CVE-2019-7394
CVE-2019-7394
A privilege escalation vulnerability in the administrative user interface of CA Technologies CA Strong Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 7.1.x and CA Risk Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 3.1.x allows an authenticated attacker to gain additional privileges in some cases where an account has customized and limited privileges.
Affected products
CA Technologies, A Broadcom Company · CA Risk AuthenticationCA Technologies, A Broadcom Company · CA Strong AuthenticationWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/153089/CA-Risk-Strong-Authentication-Privilege-Escalation.htmlhttp://seclists.org/fulldisclosure/2019/May/43https://seclists.org/bugtraq/2019/May/66https://support.ca.com/us/product-content/recommended-reading/security-notices/CA20190523-01--security-notice-for-ca-risk-authentication-and-ca-strong-authentication.htmlhttp://www.securityfocus.com/bid/108483