VYPR

Radia Client Automation

by Accelerite

CVEs (6)

  • CVE-2015-1497Feb 16, 2015
    risk 0.09cvss epss 0.75

    radexecd.exe in Persistent Systems Radia Client Automation (RCA) 7.9, 8.1, 9.0, and 9.1 allows remote attackers to execute arbitrary commands via a crafted request to TCP port 3465.

  • CVE-2015-7863Oct 19, 2015
    risk 0.00cvss epss 0.02

    The default configuration of Persistent Accelerite Radia Client Automation (formerly HP Client Automation) 7.9 through 9.1 before 2015-02-19 enables a remote Notify capability without the Extended Notify Security features, which might allow remote attackers to bypass intended…

  • CVE-2015-7862Oct 19, 2015
    risk 0.00cvss epss 0.02

    Persistent Accelerite Radia Client Automation (formerly HP Client Automation) 7.9 through 9.1 before 2015-02-19 improperly implements the Role Based Access Control feature, which might allow remote attackers to modify an account's role assignments via unspecified vectors.

  • CVE-2015-7861Oct 19, 2015
    risk 0.00cvss epss 0.05

    Persistent Accelerite Radia Client Automation (formerly HP Client Automation), possibly before 9.1, allows remote attackers to execute arbitrary code by sending unspecified commands in an environment that lacks relationship-based firewalling.

  • CVE-2015-7860Oct 19, 2015
    risk 0.00cvss epss 0.06

    Stack-based buffer overflow in the agent in Persistent Accelerite Radia Client Automation (formerly HP Client Automation), possibly before 9.1, allows remote attackers to execute arbitrary code by sending a large amount of data in an environment that lacks relationship-based…

  • CVE-2015-1498Feb 16, 2015
    risk 0.00cvss epss 0.02

    Persistent Systems Radia Client Automation does not properly restrict access to certain request, which allows remote attackers to (1) enumerate user accounts via a getUsers request, (2) assign a role to a user account via an addAssigneesToRole request, (3) remove a role from a…