First published: Fri Jan 27 2017(Updated: )
The casrvc program in CA Common Services, as used in CA Client Automation 12.8, 12.9, and 14.0; CA SystemEDGE 5.8.2 and 5.9; CA Systems Performance for Infrastructure Managers 12.8 and 12.9; CA Universal Job Management Agent 11.2; CA Virtual Assurance for Infrastructure Managers 12.8 and 12.9; CA Workload Automation AE 11, 11.3, 11.3.5, and 11.3.6 on AIX, HP-UX, Linux, and Solaris allows local users to modify arbitrary files and consequently gain root privileges via vectors related to insufficient validation.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Broadcom CA Automic Workload Automation | =11.0 | |
Broadcom CA Automic Workload Automation | =11.3 | |
Broadcom CA Automic Workload Automation | =11.3.5 | |
Broadcom CA Automic Workload Automation | =11.3.6 | |
Broadcom CA Client Automation | =12.8 | |
Broadcom CA Client Automation | =12.9 | |
Broadcom CA Client Automation | =14.0 | |
Broadcom SystemEDGE | =5.8.2 | |
Broadcom SystemEDGE | =5.9 | |
Broadcom Systems Performance for Infrastructure Managers | =12.8 | |
Broadcom Systems Performance for Infrastructure Managers | =12.9 | |
CA Universal Job Management Agent | =11.2 | |
CA Virtual Assurance for Infrastructure Managers | =12.8 | |
CA Virtual Assurance for Infrastructure Managers | =12.9 | |
HPE HP-UX | ||
IBM AIX | ||
Linux Kernel | ||
Oracle Solaris and Zettabyte File System (ZFS) |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2016-9795 is classified as a medium severity vulnerability.
To fix CVE-2016-9795, update the affected CA software to the latest patched version provided by Broadcom.
CVE-2016-9795 affects multiple CA products including CA Client Automation, CA Workload Automation, and CA SystemEDGE across specific versions.
The risks associated with CVE-2016-9795 primarily involve potential security vulnerabilities that could be exploited by attackers.
Yes, CVE-2016-9795 is present in specific versions of Broadcom CA Workload Automation AE, including versions 11.0, 11.3, 11.3.5, and 11.3.6.