Computer Security
[EN] securityvulns.ru no-pyccku


CA Spectrum security vulnerabilities
Published:13.04.2015
Source:
SecurityVulns ID:14373
Type:remote
Threat Level:
6/10
Description:XSS, code execution.
Affected:CA : Spectrum 9.3
CVE:CVE-2015-2828 (CA Spectrum 9.2.x and 9.3.x before 9.3 H02 does not properly validate serialized Java objects, which allows remote authenticated users to obtain administrative privileges via crafted object data.)
 CVE-2015-2827 (Cross-site scripting (XSS) vulnerability in CA Spectrum 9.2.x and 9.3.x before 9.3 H02 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.)
Original documentdocumentCA, CA20150407-01: Security Notice for CA Spectrum (13.04.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod