1 results (0.001 seconds)
CVSS: 9.8EPSS: 14%CPEs: 6EXPL: 0
CVSS: 9.8EPSS: 14%CPEs: 6EXPL: 0CVE-2018-8954 – CA Workload Automation AE / CA Workload Control Center SQL Injection / Code Execution
https://notcve.org/view.php?id=CVE-2018-8954
30 Mar 2018 — CA Workload Control Center before r11.4 SP6 allows remote attackers to execute arbitrary code via a crafted HTTP request. CA Workload Control Center en versiones anteriores a la r11.4 SP6 permite que los atacantes remotos ejecuten código arbitrario mediante una petición HTTP manipulada. CA Technologies Support is alerting customers to two potential risks with CA Workload Automation AE and CA Workload Control Center. Two vulnerabilities exist that can allow a remote attacker to conduct SQL injection attacks ... • http://www.securityfocus.com/bid/103742 • CWE-20: Improper Input Validation •