Insecure Input Handling in CA Automic Automation by Broadcom
CVE-2022-33755

5.3MEDIUM

Key Information:

Vendor
Broadcom
Vendor
CVE Published:
16 June 2022

Summary

CA Automic Automation versions 12.2 and 12.3 are susceptible to vulnerabilities due to insecure input handling in the Automic Agent. This flaw may enable remote attackers to potentially enumerate user accounts, leading to unauthorized access and information disclosure risks. Organizations utilizing these versions are advised to assess their systems and apply necessary security measures.

Affected Version(s)

CA Automic Automation 12.2, 12.3

References

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.