Insecure Input Handling in CA Automic Automation by Broadcom
CVE-2022-33755
5.3MEDIUM
Summary
CA Automic Automation versions 12.2 and 12.3 are susceptible to vulnerabilities due to insecure input handling in the Automic Agent. This flaw may enable remote attackers to potentially enumerate user accounts, leading to unauthorized access and information disclosure risks. Organizations utilizing these versions are advised to assess their systems and apply necessary security measures.
Affected Version(s)
CA Automic Automation 12.2, 12.3
References
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved