CVE-2018-9029

CWE-89SQL Injection3 documents3 sources
Severity
9.8CRITICAL
EPSS
0.5%
top 33.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Broadcom Privileged Access ManagerCA Technologies CA Privileged Access Manager
Timeline
PublishedJun 18
Latest updateMay 13

Description

An improper input validation vulnerability in CA Privileged Access Manager 2.x allows remote attackers to conduct SQL injection attacks.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-9539-wc47-wc8c: An improper input validation vulnerability in CA Privileged Access Manager 22022-05-13
CVEList
CVE-2018-9029: An improper input validation vulnerability in CA Privileged Access Manager 22018-06-18
CVE-2018-9029 (CRITICAL CVSS 9.8) | An improper input validation vulner | cvebase.io