CVE-2018-19635 in CA Technologies and Broadcom Products
Published on January 22, 2019
CA Service Desk Manager 14.1 and 17 contain a vulnerability that can allow a malicious actor to escalate privileges in the user interface.
Weakness Type
Improper Privilege Management
The software does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Products Associated with CVE-2018-19635
stack.watch emails you whenever new vulnerabilities are published in CA Technologies Service Desk Manager or Broadcom Service Desk Manager. Just hit a watch button to start following.
Affected Versions
CA Technologies CA Service Desk Manager:- Version 14.1 is affected.
- Version 17 is affected.
Exploit Probability
EPSS
0.49%
Percentile
65.27%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.