CVE-2018-9021

Critical

An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitrary…

ca·CWE-269·Published 2018-06-18

CVSS

9.8

EPSS

0.19

KEV

Exploits

cve.orgen

175 chars

An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitrary commands with specially crafted requests.

NVDen

175 chars

An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitrary commands with specially crafted requests.

Vulnerabilidad de omisión de autenticación en CA Privileged Access Manager en versiones 2.8.2 y anteriores permite que atacantes remotos ejecuten comandos arbitrarios con peticiones especialmente manipuladas.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	7.5	10.0	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
3.1	Primary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H