← Back

CVE-2015-3317

nvd nist
Published: Jun 17, 2015Modified: May 6, 2026

JSON object

Loading...
4.6
Vector
AV:L/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 3.9 / Impact: 6.4
Source: NVD

Description

CA Common Services, as used in CA Client Automation r12.5 SP01, r12.8, and r12.9; CA Network and Systems Management r11.0, r11.1, and r11.2; CA NSM Job Management Option r11.0, r11.1, and r11.2; CA Universal Job Management Agent; CA Virtual Assurance for Infrastructure Managers (aka SystemEDGE) 12.6, 12.7, 12.8, and 12.9; and CA Workload Automation AE r11, r11.3, r11.3.5, and r11.3.6 on UNIX, does not properly perform bounds checking, which allows local users to gain privileges via unspecified vectors.

Affected (16)

Ca
6 products
Client Automation
Network And Systems Management
Nsm Job Management Option
Universal Job Management Agent
Virtual Assurance For Infrastructure Managers
Workload Automation Ae
Configuration A
16 vulnerable · 4 platform
Vulnerable SoftwareAffected Versions
Ca
Client Automation
Version r12.5 sp01
Client Automation
Version r12.8
Client Automation
Version r12.9
Network And Systems Management
Version r11.2
Ca
Nsm Job Management Option
Version r11.0
Nsm Job Management Option
Version r11.1
Nsm Job Management Option
Version r11.2
Universal Job Management Agent
All versions
Ca
Virtual Assurance For Infrastructure Managers
Version 12.6
Virtual Assurance For Infrastructure Managers
Version 12.7
Virtual Assurance For Infrastructure Managers
Version 12.8
Virtual Assurance For Infrastructure Managers
Version 12.9
Ca
Workload Automation Ae
Version r11.3.5
Workload Automation Ae
Version r11.3.6
Workload Automation Ae
Version r11.3
Workload Automation Ae
Version r11
Running on/withPlatform Versions
Hp
Hp Ux
All versions
Ibm
Aix
All versions
Linux
Linux Kernel
All versions
Oracle
Solaris
All versions

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (8)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.