CVE-2019-19544

Published: Jan 8, 2020Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

CA Automic Dollar Universe 5.3.3 contains a vulnerability, related to the uxdqmsrv binary being setuid root, that allows local attackers to elevate privileges. This vulnerability was reported to CA several years after CA Automic Dollar Universe 5.3.3 reached End of Life (EOL) status on April 1, 2015.

Affected (1)

Products: Broadcom: Ca Automic Dollar Universe

1 product

Ca Automic Dollar Universe

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Broadcom Ca Automic Dollar Universe	Version 5.3.3

Related CWEs

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (2)

https://github.com/itm4n/CVEs/tree/master/ca-dollaru-uxdqmsrv-privesc

Source: vuln@ca.com

ExploitThird Party Advisory

https://github.com/itm4n/CVEs/tree/master/ca-dollaru-uxdqmsrv-privesc

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.