Project Portfolio Management

project_portfolio_management

Vendor: Ca • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-13826 2Broadcom Ca 2Project Portfolio Management Project Portfolio Management Nov 21, 2024 Aug 30, 2018 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks.
CVE-2018-13825 2Broadcom Ca 2Project Portfolio Management Project Portfolio Management Nov 21, 2024 Aug 30, 2018 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Insufficient input validation in the gridExcelExport functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute reflected cross-site scripting atta...Show more Insufficient input validation in the gridExcelExport functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute reflected cross-site scripting attacks.Show less
CVE-2018-13824 2Broadcom Ca 2Project Portfolio Management Project Portfolio Management Nov 21, 2024 Aug 30, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Insufficient input sanitization of two parameters in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute SQL injection attacks.
CVE-2018-13823 2Broadcom Ca 2Project Portfolio Management Project Portfolio Management Nov 21, 2024 Aug 30, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to access sensitive information.