CVE-2011-1654

N/A Unknown

Published: April 18, 2011 Modified: April 29, 2026

Description

Directory traversal vulnerability in the Heartbeat Web Service in CA.Itm.Server.ManagementWS.dll in the Management Server in CA Total Defense (TD) r12 before SE2 allows remote attackers to execute arbitrary code via directory traversal sequences in the GUID parameter in an upload request to FileUploadHandler.ashx.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/44097

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1025353

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/517488/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/517494/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/47357

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2011/0977

Source: cve@mitre.org

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-11-126/

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/66726

Source: cve@mitre.org

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7BCD065CEC-AFE2-4D9D-8E0B-BE7F6E345866%7D

Source: cve@mitre.org

http://secunia.com/advisories/44097

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1025353

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/517488/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/517494/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/47357

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2011/0977

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-11-126/

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/66726

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7BCD065CEC-AFE2-4D9D-8E0B-BE7F6E345866%7D

Source: af854a3a-2127-422b-91ae-364da2661108

18 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

11.4%

95th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-22

Affected Vendors

broadcom

Related CVEs

CVE-2026-9699 6.8

CVE-2026-57667 8.5

CVE-2026-57665 5.3

CVE-2026-57664 4.3

CVE-2026-57663 8.5