How to address vulnerability on the attachments, When specific file extension contain executable are uploaded to tickets.
search cancel

How to address vulnerability on the attachments, When specific file extension contain executable are uploaded to tickets.

book

Article ID: 416981

calendar_today

Updated On:

Products

CA Service Management - Service Desk Manager

Issue/Introduction

Audit team reported possible vulnerability threat from the files that are attached to the CA Servicedesk Manager ticket. 
1.Upload files containing malicious scripts can be executed by the server, giving the attacker control over the server.
2.Data Exfiltration: Attackers can use uploaded files to read, modify or delete sensitive data.
3.Client-Side Attack: Harmful files, such as HTML or JavaScript and CSV, can be delivered to users, leading to cross-site scripting (XSS) or other client-side attack.

Environment

Release: CA Servicedesk Manager 17.4.

Resolution

CA Servicedesk Manager has no inbuilt tool to scan any files that attached to the tickets. 
Recommendation is to  restrict files based on the file type under prohibited file type section: 
Step1 : Administration tab-> Attachments-> Repositories



Additional Information

https://techdocs.broadcom.com/us/en/ca-enterprise-software/business-management/ca-service-management/17-4/administering/configure-ca-service-desk-manager/establishing-support-structure/how-to-set-up-the-attachments-library.html

Powered by Wolken Software