CA published a new security notice on March 23, 2016 that addresses a high-risk vulnerability with CA Single Sign-On Agents. The CVE identifiers are CVE-2015-6853 and CVE-2015-6854.