CVE-2024-38499Improper Privilege Management in CA Client Automation

CWE-269Improper Privilege ManagementCWE-276Incorrect Default Permissions3 documents3 sources
Severity
7.3HIGHNVD
EPSS
0.1%
top 78.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Broadcom CA Client Automation
Timeline
PublishedDec 17

Description

CA Client Automation (ITCM) allows non-admin/non-root users to encrypt a string using CAF CLI and SD_ACMD CLI. This would allow the non admin user to access the critical encryption keys which further causes the exploitation of stored credentials. This fix doesn't allow a non-admin/non-root user to execute "caf encrypt"/"sd_acmd encrypt" commands.

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Affected Packages1 packages

CVEListV5broadcom/ca_client_automation14.5 CU7

🔴Vulnerability Details

2
GHSA
GHSA-883f-932m-665g: CA Client Automation (ITCM) allows non-admin/non-root users to encrypt a string using CAF CLI and SD_ACMD CLI2024-12-17
CVEList
Improper Privilege Management Vulnerability in CA Client Automation 14.52024-12-17
CVE-2024-38499 — Improper Privilege Management | cvebase