An improper input validation vulnerability in CA Privileged Access Manager 2.x allows remote attackers to conduct SQL injection attacks.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/104496 | Third Party Advisory VDB Entry |
https://support.ca.com/us/product-content/recommended-reading/security-notices/ca20180614-01--security-notice-for-ca-privileged-access-manager.html | Vendor Advisory |
Configurations
History
12 Apr 2021, 13:40
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:broadcom:privileged_access_manager:*:*:*:*:*:*:*:* |
Information
Published : 2018-06-18 18:29
Updated : 2023-12-10 12:30
NVD link : CVE-2018-9029
Mitre link : CVE-2018-9029
CVE.ORG link : CVE-2018-9029
JSON object : View
Products Affected
broadcom
- privileged_access_manager
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')