GCVE - cpe:2.3:a:ca_technologies:ppm:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:ca_technologies:ppm:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Ca Technologies (`255fd419-1e98-5f77-8619-9e5785d1f39d`)
Product	Ppm (`7ff7dfa4-8676-5007-a6f8-b8f12f0e7517`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-13826`	vulnerable	2026-06-08 05:10:52.006515	Details available An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks. Published: 2018-08-30T14:00:00.000Z Updated: 2024-09-17T04:08:43.228Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/105297 https://support.ca.com/us/product-content/recommended-reading/security-notices/ca20180829-01--security-notice-for-ca-ppm.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-13825`	vulnerable	2026-06-08 05:10:52.006028	Details available Insufficient input validation in the gridExcelExport functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute reflected cross-site scripting attacks. Published: 2018-08-30T14:00:00.000Z Updated: 2024-09-17T03:59:51.363Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/105297 https://support.ca.com/us/product-content/recommended-reading/security-notices/ca20180829-01--security-notice-for-ca-ppm.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-13824`	vulnerable	2026-06-08 05:10:52.005390	Details available Insufficient input sanitization of two parameters in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute SQL injection attacks. Published: 2018-08-30T14:00:00.000Z Updated: 2024-09-17T02:00:43.300Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/105297 https://support.ca.com/us/product-content/recommended-reading/security-notices/ca20180829-01--security-notice-for-ca-ppm.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-13823`	vulnerable	2026-06-08 05:10:52.002753	Details available An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to access sensitive information. Published: 2018-08-30T14:00:00.000Z Updated: 2024-09-16T16:38:07.040Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/105297 https://support.ca.com/us/product-content/recommended-reading/security-notices/ca20180829-01--security-notice-for-ca-ppm.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-13822`	vulnerable	2026-06-08 05:10:51.999176	Details available Unprotected storage of credentials in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows attackers to access sensitive information. Published: 2018-08-30T14:00:00.000Z Updated: 2024-09-17T03:38:20.075Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/105297 https://support.ca.com/us/product-content/recommended-reading/security-notices/ca20180829-01--security-notice-for-ca-ppm.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.