CVE-2018-9025

CWE-20Improper Input Validation3 documents3 sources
Severity
7.5HIGH
EPSS
0.2%
top 57.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Broadcom Privileged Access ManagerCA Technologies CA Privileged Access Manager
Timeline
PublishedJun 18
Latest updateMay 13

Description

An input validation vulnerability in CA Privileged Access Manager 2.x allows remote attackers to poison log files with specially crafted input.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-q6h9-8v42-99g3: An input validation vulnerability in CA Privileged Access Manager 22022-05-13
CVEList
CVE-2018-9025: An input validation vulnerability in CA Privileged Access Manager 22018-06-18
CVE-2018-9025 (HIGH CVSS 7.5) | An input validation vulnerability i | cvebase.io