cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-19230,https://securityvulnerability.io/vulnerability/CVE-2019-19230,Unsafe Deserialization Vulnerability in CA Release Automation by Broadcom,"An unsafe deserialization vulnerability exists in CA Release Automation (Nolio) 6.6, specifically within the DataManagement component. This flaw can be exploited by malicious actors to execute arbitrary code remotely, potentially allowing them to manipulate the system or access sensitive data without proper authorization. Organizations using this product should take immediate action to mitigate the risks associated with this vulnerability.","Ca Technologies, A Broadcom Company",Ca Release Automation,9.8,CRITICAL,0.034869998693466187,false,,false,false,false,,,false,false,,2019-12-09T00:00:00.000Z,0
CVE-2015-8699,https://securityvulnerability.io/vulnerability/CVE-2015-8699,,"Multiple cross-site scripting (XSS) vulnerabilities in CA Release Automation (formerly LISA Release Automation) 5.0.2 before 5.0.2-227, 5.5.1 before 5.5.1-1616, 5.5.2 before 5.5.2-434, and 6.1.0 before 6.1.0-1026 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.",Broadcom,Release Automation,6.1,MEDIUM,0.0010300000431016088,false,,false,false,false,,,false,false,,2016-06-29T01:00:00.000Z,0
CVE-2015-8698,https://securityvulnerability.io/vulnerability/CVE-2015-8698,,"CA Release Automation (formerly LISA Release Automation) 5.0.2 before 5.0.2-227, 5.5.1 before 5.5.1-1616, 5.5.2 before 5.5.2-434, and 6.1.0 before 6.1.0-1026 allows remote attackers to read arbitrary files or cause a denial of service via a request containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.",Broadcom,Release Automation,7.1,HIGH,0.0022299999836832285,false,,false,false,false,,,false,false,,2016-06-29T01:00:00.000Z,0
CVE-2014-8246,https://securityvulnerability.io/vulnerability/CVE-2014-8246,,Cross-site request forgery (CSRF) vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.,Broadcom,Release Automation,,,0.0033100000582635403,false,,false,false,false,,,false,false,,2014-12-16T23:00:00.000Z,0
CVE-2014-8248,https://securityvulnerability.io/vulnerability/CVE-2014-8248,,SQL injection vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote authenticated users to execute arbitrary SQL commands via a crafted query.,Broadcom,Release Automation,,,0.0024999999441206455,false,,false,false,false,,,false,false,,2014-12-16T23:00:00.000Z,0
CVE-2014-8247,https://securityvulnerability.io/vulnerability/CVE-2014-8247,,Cross-site scripting (XSS) vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.,Broadcom,Release Automation,,,0.0031300000846385956,false,,false,false,false,,,false,false,,2014-12-16T23:00:00.000Z,0