Vulnerabilities > Broadcom > Spectrum

DATE CVE VULNERABILITY TITLE RISK
2015-04-08 CVE-2015-2828 Permissions, Privileges, and Access Controls vulnerability in Broadcom Spectrum 9.2/9.3
CA Spectrum 9.2.x and 9.3.x before 9.3 H02 does not properly validate serialized Java objects, which allows remote authenticated users to obtain administrative privileges via crafted object data.
network
low complexity
broadcom CWE-264
critical
9.0
2015-04-08 CVE-2015-2827 Cross-site Scripting vulnerability in Broadcom Spectrum 9.2/9.3
Cross-site scripting (XSS) vulnerability in CA Spectrum 9.2.x and 9.3.x before 9.3 H02 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
network
broadcom CWE-79
3.5