CVE-2018-9022

Critical

An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitrary code…

ca·CWE-269·Published 2018-06-18

CVSS

9.8

EPSS

0.20

KEV

Exploits

cve.orgen

185 chars

An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitrary code or commands by poisoning a configuration file.

NVDen

185 chars

An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitrary code or commands by poisoning a configuration file.

Vulnerabilidad de omisión de autenticación en CA Privileged Access Manager en versiones 2.8.2 y anteriores permite que atacantes remotos ejecuten código o comandos arbitrarios envenenando un archivo de configuración.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	7.5	10.0	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
3.1	Primary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H