CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Broadcom: >> Release Automation >> 4.7.1 Security Vulnerabilities

CVE-2014-8248

SQL injection vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote authenticated users to execute arbitrary SQL commands via a crafted query.

CVSS Score

6.5

EPSS Score

0.007

Published

2014-12-16

CVE-2014-8247

Cross-site scripting (XSS) vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

4.3

EPSS Score

0.012

Published

2014-12-16

CVE-2014-8246

Cross-site request forgery (CSRF) vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CVSS Score

6.8

EPSS Score

0.002

Published

2014-12-16

Page 1

Vulnerabilities

Vulnerable Software

Broadcom: >> Release Automation >> 4.7.1 Security Vulnerabilities

Products

Pricing

Contact Us