Hi
A VA has been identified in CA Service Desk Manager as Dangerous http methods enabled and CVE No. for the same is : CWE-650.
Please help.
Hi EMS,
Can you please provide us with the version of Service Desk you are using, along with the information on what specifically was found, how it was found, and what the steps are that you used to reproduce this vulnerability within the application?
Thanks,
Jon I.
You can also log a support case and supply the same info Jon referred to for further investigation.
===
Kind Regards,
Brian
Hi Brian
Had around 6 Vulnerability, other were resolved by CA Support, but suggested to post this VA in community.
As they were not able to provide solution for the same.
Hi Jon
SDM version is 14.1, it was found that CA SDM uses dangerous HTTP methods.
It was detected during a Vulnerability scan on the servers.
We have not taken any steps for this.
Please help!!!
Please open a support case as Brian mentioned and supply us with the vulnerability scan report so we are able to have those addressed.
Jon