CVE-2015-3317

CA Common Services, as used in CA Client Automation r12.5 SP01, r12.8, and r12.9; CA Network and Systems Management r11.0, r11.1, and r11.2; CA NSM Job Management Option r11.0, r11.1, and r11.2; CA Universal Job Management Agent; CA Virtual Assurance for Infrastructure Managers (aka SystemEDGE) 12.6, 12.7, 12.8, and 12.9; and CA Workload Automation AE r11, r11.3, r11.3.5, and r11.3.6 on UNIX, does not properly perform bounds checking, which allows local users to gain privileges via unspecified vectors.

Published: Jun 17, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-3317
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
ca / client_automation	r12.5-sp01	r12.5-sp01.x
ca / client_automation	r12.8	r12.8.x
ca / client_automation	r12.9	r12.9.x
ca / network_and_systems_management	r11.2	r11.2.x
ca / nsm_job_management_option	r11.0	r11.0.x
ca / nsm_job_management_option	r11.1	r11.1.x
ca / nsm_job_management_option	r11.2	r11.2.x
ca / virtual_assurance_for_infrastructure_managers	12.6	12.6.x
ca / virtual_assurance_for_infrastructure_managers	12.7	12.7.x
ca / virtual_assurance_for_infrastructure_managers	12.8	12.8.x
ca / virtual_assurance_for_infrastructure_managers	12.9	12.9.x
ca / workload_automation_ae	r11	r11.x
ca / workload_automation_ae	r11.3	r11.3.x
ca / workload_automation_ae	r11.3.5	r11.3.5.x
ca / workload_automation_ae	r11.3.6	r11.3.6.x

Vulnerability Database

289,697

CVE-2015-3317