Vulnerability Details CVE-2018-8954
CA Workload Control Center before r11.4 SP6 allows remote attackers to execute arbitrary code via a crafted HTTP request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.142
EPSS Ranking 94.0%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/bid/103742
- http://www.securitytracker.com/id/1040605
- https://support.ca.com/us/product-content/recommended-reading/security-notices/ca20180329-01--security-notice-for-ca-workload-automation-ae.html
- http://www.securityfocus.com/bid/103742
- http://www.securitytracker.com/id/1040605
- https://support.ca.com/us/product-content/recommended-reading/security-notices/ca20180329-01--security-notice-for-ca-workload-automation-ae.html
Products affected by CVE-2018-8954
-
cpe:2.3:a:ca:workload_control_center:r11.4
-
cpe:2.3:a:ca:workload_control_center:sp1
-
cpe:2.3:a:ca:workload_control_center:sp2
-
cpe:2.3:a:ca:workload_control_center:sp3
-
cpe:2.3:a:ca:workload_control_center:sp4
-
cpe:2.3:a:ca:workload_control_center:sp5