← Back

Ca

ca

137 CVEs • 107 products

Products (107)

Click to collapse
Toggle
Brightstor Arcserve Backup
brightstor_arcserve_backup
19 CVEs
Etrust Secure Content Manager
etrust_secure_content_manager
15 CVEs
Protection Suites
protection_suites
13 CVEs
Arcserve Backup
arcserve_backup
11 CVEs
Business Protection Suite
business_protection_suite
11 CVEs
Etrust Antivirus
etrust_antivirus
8 CVEs
Etrust Intrusion Detection
etrust_intrusion_detection
7 CVEs
Unicenter Management
unicenter_management
5 CVEs
Unicenter Software Delivery
unicenter_software_delivery
5 CVEs
Anti Virus For The Enterprise
anti-virus_for_the_enterprise
5 CVEs
Unified Infrastructure Management
unified_infrastructure_management
5 CVEs
Unicenter Asset Management
unicenter_asset_management
4 CVEs
Unicenter Enterprise Job Manager
unicenter_enterprise_job_manager
4 CVEs
Unicenter Tng
unicenter_tng
4 CVEs
Host Based Intrusion Prevention System
host-based_intrusion_prevention_system
4 CVEs
Internet Security Suite Plus 2008
internet_security_suite_plus_2008
4 CVEs
Internet Security Suite 2008
internet_security_suite_2008
4 CVEs
Gateway Security
gateway_security
4 CVEs
Ehealth Performance Manager
ehealth_performance_manager
4 CVEs
Xosoft Content Distribution
xosoft_content_distribution
4 CVEs
Xosoft High Availability
xosoft_high_availability
4 CVEs
Xosoft Replication
xosoft_replication
4 CVEs
Cloud Service Management
cloud_service_management
4 CVEs
Client Automation
client_automation
4 CVEs
Universal Job Management Agent
universal_job_management_agent
4 CVEs
Virtual Assurance For Infrastructure Managers
virtual_assurance_for_infrastructure_managers
4 CVEs
Workload Automation Ae
workload_automation_ae
4 CVEs
Service Desk Manager
service_desk_manager
4 CVEs
Project Portfolio Management
project_portfolio_management
4 CVEs
Etrust Admin
etrust_admin
3 CVEs
Threat Manager
threat_manager
3 CVEs
Ehealth
ehealth
3 CVEs
Etrust Vet Antivirus
etrust_vet_antivirus
3 CVEs
Network And Systems Management
network_and_systems_management
3 CVEs
Nsm Job Management Option
nsm_job_management_option
3 CVEs
Api Developer Portal
api_developer_portal
3 CVEs
Arcserve Backup 2000
arcserve_backup_2000
2 CVEs
Unicenter Web Services Distributed Management
unicenter_web_services_distributed_management
2 CVEs
Brightstor Arcserve Backup Agent
brightstor_arcserve_backup_agent
2 CVEs
Unicenter Remote Control
unicenter_remote_control
2 CVEs
Messaging
messaging
2 CVEs
Threat Manager For The Enterprise
threat_manager_for_the_enterprise
2 CVEs
Anti Virus
anti-virus
2 CVEs
Anti Virus Gateway
anti-virus_gateway
2 CVEs
Anti Virus Plus
anti-virus_plus
2 CVEs
Arcserve For Windows Client Agent
arcserve_for_windows_client_agent
2 CVEs
Arcserve For Windows Server Component
arcserve_for_windows_server_component
2 CVEs
Common Services
common_services
2 CVEs
Etrust Anti Virus Gateway
etrust_anti-virus_gateway
2 CVEs
Etrust Anti Virus Sdk
etrust_anti-virus_sdk
2 CVEs
Etrust Ez Antivirus
etrust_ez_antivirus
2 CVEs
Internet Security Suite Plus 2009
internet_security_suite_plus_2009
2 CVEs
Threat Manager Total Defense
threat_manager_total_defense
2 CVEs
Internet Security Suite 2010
internet_security_suite_2010
2 CVEs
Siteminder
siteminder
2 CVEs
Arcot Webfort Versatile Authentication Server
arcot_webfort_versatile_authentication_server
2 CVEs
Identityminder
identityminder
2 CVEs
Risk Authentication
risk_authentication
2 CVEs
Strong Authentication
strong_authentication
2 CVEs
Etrust Access Control
etrust_access_control
1 CVE
Controlit
controlit
1 CVE
Unicenter Remote Control Option
unicenter_remote_control_option
1 CVE
Vet Antivirus
vet_antivirus
1 CVE
Brightstor Enterprise Backup Agent
brightstor_enterprise_backup_agent
1 CVE
Unicenter Nsm
unicenter_nsm
1 CVE
Brightstor Enterprise Backup
brightstor_enterprise_backup
1 CVE
Etrust Audit Aries
etrust_audit_aries
1 CVE
Etrust Directory
etrust_directory
1 CVE
Unicenter Application Performance Monitor
unicenter_application_performance_monitor
1 CVE
Unicenter Application Server Managment
unicenter_application_server_managment
1 CVE
Unicenter Ca Web Services Distributed Management
unicenter_ca_web_services_distributed_management
1 CVE
Unicenter Exchange Management Console
unicenter_exchange_management_console
1 CVE
Unicenter Service Catalog Fulfillment Accounting
unicenter_service_catalog_fulfillment_accounting
1 CVE
Unicenter Service Fulfillment
unicenter_service_fulfillment
1 CVE
Unicenter Service Level Management
unicenter_service_level_management
1 CVE
Unicenter Web Server Management
unicenter_web_server_management
1 CVE
Brightstor Arcserve Client
brightstor_arcserve_client
1 CVE
Arcserve Backup For Laptops And Desktops
arcserve_backup_for_laptops_and_desktops
1 CVE
Personal Firewall 2007
personal_firewall_2007
1 CVE
Personal Firewall 2008
personal_firewall_2008
1 CVE
Cmdb
cmdb
1 CVE
Service Level Management
service_level_management
1 CVE
Service Metric Analysis
service_metric_analysis
1 CVE
Internet Security Suite 2007
internet_security_suite_2007
1 CVE
Advantage Data Transport
advantage_data_transport
1 CVE
It Client Manager
it_client_manager
1 CVE
Software Delivery
software_delivery
1 CVE
Internet Security Suite
internet_security_suite
1 CVE
Etrust Pestpatrole Ppctl.dll Activex
etrust_pestpatrole_ppctl.dll_activex
1 CVE
Service Desk
service_desk
1 CVE
Psformx Active X Control
psformx_active_x_control
1 CVE
Webscan Active X Control
webscan_active_x_control
1 CVE
Internet Security Suite Plus 2010
internet_security_suite_plus_2010
1 CVE
Arcserve Replication And High Availability
arcserve_replication_and_high_availability
1 CVE
Internet Security Suite 2011
internet_security_suite_2011
1 CVE
Arcserve D2d
arcserve_d2d
1 CVE
Xcom Data Transport
xcom_data_transport
1 CVE
Web Agents
web_agents
1 CVE
Erwin Web Portal
erwin_web_portal
1 CVE
Service Desk Management
service_desk_management
1 CVE

CVEs (137)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2012-6299
1Ca
1Identityminder
Apr 29, 2026
Dec 26, 2012
N/A· v4
N/A· v3
10.0 HIGH· v2
Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to bypass intended access restrictions via unknown vectors.
CVE-2012-6298
1Ca
1Identityminder
Apr 29, 2026
Dec 26, 2012
N/A· v4
N/A· v3
10.0 HIGH· v2
Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to execute arbitrary commands or modify data via unknown vectors.
CVE-2012-5973
1Ca
1Xcom Data Transport
Apr 29, 2026
Dec 10, 2012
N/A· v4
N/A· v3
10.0 HIGH· v2
CA XCOM Data Transport r11.0 and r11.5 on UNIX and Linux allows remote attackers to execute arbitrary commands via a crafted request.
CVE-2010-5156
1Ca
1Internet Security Suite 2010
Apr 29, 2026
Aug 25, 2012
N/A· v4
N/A· v3
6.2 MEDIUM· v2
Race condition in CA Internet Security Suite Plus 2010 6.0.0.272 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not block...Show more
Race condition in CA Internet Security Suite Plus 2010 6.0.0.272 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack. NOTE: this issue is disputed by some third parties because it is a flaw in a protection mechanism for situations where a crafted program has already begun to executeShow less
CVE-2012-1453
13Antiy
CaDr.web+10 more
14Anti Malware
Avl SdkDr.web Antivirus+11 more
Apr 29, 2026
Mar 21, 2012
N/A· v4
N/A· v3
4.3 MEDIUM· v2
The CAB file parser in Dr.Web 5.0.2.03300, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Sophos Anti-Virus 4.61.0, Trend Micro AntiVirus 9.120.0.1004, McAfee Gateway (formerly Webwasher) 2010.1C, Em...Show more
The CAB file parser in Dr.Web 5.0.2.03300, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Sophos Anti-Virus 4.61.0, Trend Micro AntiVirus 9.120.0.1004, McAfee Gateway (formerly Webwasher) 2010.1C, Emsisoft Anti-Malware 5.1.0.1, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL SDK 2.0.3.7, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, Rising Antivirus 22.83.00.03, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via a CAB file with a modified coffFiles field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.Show less
CVE-2012-1446
13Aladdin
AntiyCa+10 more
14Avl Sdk
Endpoint ProtectionEsafe+11 more
Apr 29, 2026
Mar 21, 2012
N/A· v4
N/A· v3
4.3 MEDIUM· v2
The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Norman Antivirus 6.06.12, eSafe 7.0.17.0, Kaspersky...Show more
The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Norman Antivirus 6.06.12, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, McAfee Gateway (formerly Webwasher) 2010.1C, Sophos Anti-Virus 4.61.0, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL SDK 2.0.3.7, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified encoding field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.Show less
CVE-2012-1440
5Aladdin
CaFortinet+2 more
5Esafe
Etrust Vet AntivirusFortinet Antivirus+2 more
Apr 29, 2026
Mar 21, 2012
N/A· v4
N/A· v3
4.3 MEDIUM· v2
The ELF file parser in Norman Antivirus 6.06.12, eSafe 7.0.17.0, CA eTrust Vet Antivirus 36.1.8511, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an EL...Show more
The ELF file parser in Norman Antivirus 6.06.12, eSafe 7.0.17.0, CA eTrust Vet Antivirus 36.1.8511, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified identsize field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.Show less
CVE-2011-4054
1Ca
1Siteminder
Apr 29, 2026
Dec 8, 2011
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in login.fcc in CA SiteMinder R6 SP6 before CR7 and R12 SP3 before CR8 allows remote attackers to inject arbitrary web script or HTML via the postpreservationdata parameter.
CVE-2011-3011
1Ca
1Arcserve D2d
Apr 29, 2026
Aug 15, 2011
N/A· v4
N/A· v3
5.0 MEDIUM· v2
BaseServiceImpl.class in CA ARCserve D2D r15 does not properly handle sessions, which allows remote attackers to obtain credentials, and consequently execute arbitrary commands, via unspecified vectors.
CVE-2011-2667
2Broadcom
Ca
2Gateway Security
Total Defense
Apr 29, 2026
Jul 28, 2011
N/A· v4
N/A· v3
10.0 HIGH· v2
Icihttp.exe in CA Gateway Security for HTTP, as used in CA Gateway Security 8.1 before 8.1.0.69 and CA Total Defense r12, does not properly parse URLs, which allows remote attackers to execute arbitrary code or cause a d...Show more
Icihttp.exe in CA Gateway Security for HTTP, as used in CA Gateway Security 8.1 before 8.1.0.69 and CA Total Defense r12, does not properly parse URLs, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and daemon crash) via a malformed request.Show less
CVE-2011-1899
1Ca
1Ehealth
Apr 29, 2026
May 16, 2011
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in CA eHealth 6.0.x, 6.1.x, 6.2.1, and 6.2.2 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters.
CVE-2011-1826
1Ca
1Arcot Webfort Versatile Authentication Server
Apr 29, 2026
May 5, 2011
N/A· v4
N/A· v3
5.8 MEDIUM· v2
Open redirect vulnerability in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attac...Show more
Open redirect vulnerability in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.Show less
CVE-2011-1825
1Ca
1Arcot Webfort Versatile Authentication Server
Apr 29, 2026
May 5, 2011
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allow remote attackers to inject arbitrary web script or HTML via u...Show more
Multiple cross-site scripting (XSS) vulnerabilities in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.Show less
CVE-2011-1718
2Broadcom
Ca
2Siteminder
Siteminder
Apr 29, 2026
Apr 27, 2011
N/A· v4
N/A· v3
4.3 MEDIUM· v2
The Web Agents component in CA SiteMinder R6 before SP6 CR2 and R12 before SP3 CR2 does not properly handle multi-line headers, which allows remote authenticated users to conduct impersonation attacks and gain privileges...Show more
The Web Agents component in CA SiteMinder R6 before SP6 CR2 and R12 before SP3 CR2 does not properly handle multi-line headers, which allows remote authenticated users to conduct impersonation attacks and gain privileges via crafted data.Show less
CVE-2011-1036
1Ca
3Host Based Intrusion Prevention System
Internet Security Suite 2010Internet Security Suite 2011
Apr 29, 2026
Feb 25, 2011
N/A· v4
N/A· v3
8.8 HIGH· v2
The XML Security Database Parser class in the XMLSecDB ActiveX control in the HIPSEngine component in the Management Server before 8.1.0.88, and the client before 1.6.450, in CA Host-Based Intrusion Prevention System (HI...Show more
The XML Security Database Parser class in the XMLSecDB ActiveX control in the HIPSEngine component in the Management Server before 8.1.0.88, and the client before 1.6.450, in CA Host-Based Intrusion Prevention System (HIPS) 8.1, as used in CA Internet Security Suite (ISS) 2010, allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via vectors involving the SetXml and Save methods.Show less
CVE-2011-0758
1Ca
2Etrust Secure Content Manager
Gateway Security
Apr 29, 2026
Feb 10, 2011
N/A· v4
N/A· v3
10.0 HIGH· v2
The eCS component (ECSQdmn.exe) in CA ETrust Secure Content Manager 8.0 and CA Gateway Security 8.1 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted request to port 18...Show more
The eCS component (ECSQdmn.exe) in CA ETrust Secure Content Manager 8.0 and CA Gateway Security 8.1 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted request to port 1882, involving an incorrect integer calculation and a heap-based buffer overflow.Show less
CVE-2010-3984
1Ca
4Arcserve Replication And High Availability
Xosoft Content DistributionXosoft High Availability+1 more
Apr 29, 2026
Jan 7, 2011
N/A· v4
N/A· v3
7.5 HIGH· v2
Buffer overflow in mng_core_com.dll in CA XOsoft Replication r12.0 SP1 and r12.5 SP2 rollup, CA XOsoft High Availability r12.0 SP1 and r12.5 SP2 rollup, CA XOsoft Content Distribution r12.0 SP1 and r12.5 SP2 rollup, and...Show more
Buffer overflow in mng_core_com.dll in CA XOsoft Replication r12.0 SP1 and r12.5 SP2 rollup, CA XOsoft High Availability r12.0 SP1 and r12.5 SP2 rollup, CA XOsoft Content Distribution r12.0 SP1 and r12.5 SP2 rollup, and CA ARCserve Replication and High Availability (RHA) r15.0 SP1 allows remote attackers to execute arbitrary code via a crafted create_session_bab operation in a SOAP request to xosoapapi.asmx.Show less
CVE-2010-4502
1Ca
1Internet Security Suite Plus 2010
Apr 29, 2026
Dec 8, 2010
N/A· v4
N/A· v3
7.2 HIGH· v2
Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite Plus 2010 allows local users to cause a denial of service (pool corruption) and execute arbitrary code via crafted arguments to the 0x88000080 IOCTL,...Show more
Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite Plus 2010 allows local users to cause a denial of service (pool corruption) and execute arbitrary code via crafted arguments to the 0x88000080 IOCTL, which triggers a buffer overflow.Show less
CVE-2010-2193
1Ca
2Psformx Active X Control
Webscan Active X Control
Apr 29, 2026
Jun 10, 2010
N/A· v4
N/A· v3
10.0 HIGH· v2
Multiple unspecified vulnerabilities in the CA (1) PSFormX and (2) WebScan ActiveX controls, as distributed on the CA Global Advisor web site until May 2009, allow remote attackers to execute arbitrary code via unknown v...Show more
Multiple unspecified vulnerabilities in the CA (1) PSFormX and (2) WebScan ActiveX controls, as distributed on the CA Global Advisor web site until May 2009, allow remote attackers to execute arbitrary code via unknown vectors.Show less
CVE-2010-1223
1Ca
3Xosoft Content Distribution
Xosoft High AvailabilityXosoft Replication
Apr 29, 2026
Apr 7, 2010
N/A· v4
N/A· v3
10.0 HIGH· v2
Multiple buffer overflows in CA XOsoft r12.0 and r12.5 allow remote attackers to execute arbitrary code via (1) a malformed request to the ws_man/xosoapapi.asmx SOAP endpoint or (2) a long string to the entry_point.aspx...Show more
Multiple buffer overflows in CA XOsoft r12.0 and r12.5 allow remote attackers to execute arbitrary code via (1) a malformed request to the ws_man/xosoapapi.asmx SOAP endpoint or (2) a long string to the entry_point.aspx service.Show less