CVE-2019-13657

Summary

CA Performance Management 3.5.x, 3.6.x before 3.6.9, and 3.7.x before 3.7.4 have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security.

Affected Software

VendorProductVersion RangeStatus
CA Technologies, A Broadcom CompanyCA Performance Management3.5.xaffected
CA Technologies, A Broadcom CompanyCA Performance Management3.6.x before 3.6.9affected
CA Technologies, A Broadcom CompanyCA Performance Management3.7.x before 3.7.4affected

Weaknesses

  • CWE-798: CWE-798 Use of Hard-coded Credentials

ADP Enrichment

CVE Program Container

Additional References

References