Authentication Error Vulnerability in CA Automic Automation by Broadcom
CVE-2022-33750

9.8CRITICAL

Key Information:

Vendor: Broadcom
Status: Ca Automic Automation
Vendor: CVE Published:; 16 June 2022

Summary

The CA Automic Automation products versions 12.2 and 12.3 contain a vulnerability in the Automic agent that allows an unauthenticated remote attacker to exploit an authentication error. This flaw could potentially allow the attacker to execute arbitrary commands on the affected system, leading to a compromise of confidentiality and integrity. Organizations using these versions should apply appropriate security measures to mitigate the risk of exploitation.

Affected Version(s)

CA Automic Automation 12.2, 12.3

References

https://support.broadcom.com/web/ecx/support-content-noti...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 16, 2022
Vulnerability Reserved
Jun 15, 2022