CVE-2018-13826

Summary

An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks.

Affected Software

VendorProductVersion RangeStatus
CA TechnologiesPPM15.3 and earlieraffected

Weaknesses

  • XML External Entity (XXE)

ADP Enrichment

CVE Program Container

Additional References

References