CVE-2018-13820

HIGH

CA Unified Infrastructure Management - Hard-coded Credentials

Title source: rule

Description

A hardcoded passphrase, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows attackers to access sensitive information.

References (2)

Scores

CVSS v3 7.5
EPSS 0.0026
EPSS Percentile 49.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

CWE
CWE-798
Status published

Affected Products (3)

ca/unified_infrastructure_management
ca/unified_infrastructure_management
ca/unified_infrastructure_management

Timeline

Published Aug 30, 2018
Tracked Since Feb 18, 2026