QwikSec

Security Database

CVE

CWE

Training

CVE-2022-22689

Published: Feb 4, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

CA Harvest Software Change Manager versions 13.0.3, 13.0.4, 14.0.0, and 14.0.1, contain a vulnerability in the CSV export functionality, due to insufficient input validation, that can allow a privileged user to potentially execute arbitrary code or commands.

Vendor	Product	Versions
n/a	CA Harvest Software Change Manager	affected `13.0.3, 13.0.4, 14.0.0, 14.0.1`

Weaknesses (CWE)

References

https://support.broadcom.com/security-advisory/content/security-advisories/CA20220203-01-Security-Notice-for-CA-Harvest-Software-Change-Manager/ESDSA20297

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.