Vulnerability Database

318,275

Total vulnerabilities in the database

CVE-2019-19231

An insecure file access vulnerability exists in CA Client Automation 14.0, 14.1, 14.2, and 14.3 Agent for Windows that can allow a local attacker to gain escalated privileges.

Published: Dec 20, 2019
Updated: Nov 9, 2025
CVE: CVE-2019-19231
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.3
AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-65

Affected Software
References

Software	From	Fixed in
broadcom / ca_client_automation	14.0	14.0.x
broadcom / ca_client_automation	14.1	14.1.x
broadcom / ca_client_automation	14.2	14.2.x
broadcom / ca_client_automation	14.3	14.3.x

http://packetstormsecurity.com/files/155758/CA-Client-Automation-14.x-Privilege-Escalation.html
http://seclists.org/fulldisclosure/2020/Jan/5
https://seclists.org/bugtraq/2019/Dec/41
https://techdocs.broadcom.com/us/product-content/recommended-reading/security-notices/CA20191218-01-security-notice-for-ca-client-automation-agent-for-windows.html

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo