Ca Technologies Workload Automation Ae vulnerabilities

2 known vulnerabilities affecting ca_technologies/workload_automation_ae.

Total CVEs

2

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

CRITICAL1HIGH1

Vulnerabilities

Page 1 of 1

CVE-2019-13656CRITICALCVSS 9.8v11.3.5v11.3.62019-09-06

CVE-2019-13656 [CRITICAL] CWE-284 CVE-2019-13656: An access vulnerability in CA Common Services DIA of CA Technologies Client Automation 14 and Worklo An access vulnerability in CA Common Services DIA of CA Technologies Client Automation 14 and Workload Automation AE 11.3.5, 11.3.6 allows a remote attacker to execute arbitrary code.

CVE-2018-8953HIGHCVSS 8.8vr11.3.5, r11.3.6 SP6 and earlier2018-04-11

CVE-2018-8953 [HIGH] CWE-89 CVE-2018-8953: CA Workload Automation AE before r11.3.6 SP7 allows remote attackers to a perform SQL injection via CA Workload Automation AE before r11.3.6 SP7 allows remote attackers to a perform SQL injection via a crafted HTTP request.