Entropy Weakness in CA Automic Automation Engine Leading to Potential Data Exposure
CVE-2022-33756

7.5HIGH

Key Information:

Vendor: Broadcom
Status: Ca Automic Automation
Vendor: CVE Published:; 16 June 2022

What is CVE-2022-33756?

CA Automic Automation versions 12.2 and 12.3 are affected by an entropy weakness in the Automic Automation Engine. This vulnerability could potentially allow a remote attacker to exploit the weakness to gain unauthorized access to sensitive data, posing a significant risk to users relying on this automation solution. Organizations utilizing these versions should take immediate action to mitigate potential risks and protect their data integrity.

Affected Version(s)

CA Automic Automation 12.2, 12.3

References

https://support.broadcom.com/web/ecx/support-content-noti...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 16, 2022
Vulnerability Reserved
Jun 15, 2022

Broadcom

What is CVE-2022-33756?

Affected Version(s)

References

CVSS V3.1

Timeline