cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-28248,https://securityvulnerability.io/vulnerability/CVE-2021-28248,Improper Authentication Limitations in CA eHealth Performance Manager,"The CA eHealth Performance Manager, specifically versions up to 6.3.2.12, is susceptible to a serious flaw that allows attackers to bypass established security measures. This vulnerability permits an attacker to make an unlimited number of authentication attempts against the system using different passwords. As a result, this can lead to unauthorized access to user accounts, particularly affecting systems that are no longer supported by the vendor. It is crucial for organizations using the unaffected versions to consider enhancing their security measures to prevent such breaches.",Broadcom,Ehealth,7.5,HIGH,0.006200000178068876,false,,false,false,false,,,false,false,,2021-03-26T07:14:33.000Z,0
CVE-2021-28246,https://securityvulnerability.io/vulnerability/CVE-2021-28246,Privilege Escalation in CA eHealth Performance Manager by CA Technologies,"The CA eHealth Performance Manager is subject to a privilege escalation vulnerability that allows an attacker to execute code as the ehealth user. This occurs through the creation of a malicious library within a writable RPATH, which is dynamically linked when the 'emtgtctl2' executable runs. It is particularly important to note that this issue affects products no longer supported by the vendor, potentially increasing the risk for organizations still utilizing these outdated versions.",Broadcom,Ehealth,7.8,HIGH,0.0004799999878741801,false,,false,false,false,,,false,false,,2021-03-26T07:04:46.000Z,0