CVE-2009-0043

EPSS 29.19%
Veröffentlicht 08.01.2009 19:30:11
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote attackers to execute arbitrary commands via unspecified vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ca ≫ Service Level Management Version3.5

Ca ≫ Service Metric Analysis Versionr11.0

Ca ≫ Service Metric Analysis Versionr11.1

Ca ≫ Service Metric Analysis Versionr11.1 Updatesp1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	29.19%	0.964

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/07.aspx

Vendor Advisory

http://securityreason.com/securityalert/4887

http://www.securityfocus.com/archive/1/499857/100/0/threaded

http://www.securityfocus.com/bid/33161

Patch

http://www.vupen.com/english/advisories/2009/0053

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=196148

Patch

https://nvd.nist.gov/vuln/detail/CVE-2009-0043

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-0043

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-0043

EUVD