ByteOS Network

CVE Vulnerability Details :

CVE-2026-8370

PUBLISHED

More Info Official Page

Assigner-ca

Assigner Org ID-e291eae9-7c0a-46ac-ba7d-5251811f8b7f

Published At-19 May, 2026 | 18:42

Updated At-19 May, 2026 | 19:30

▼CVE Numbering Authority (CNA)

Automic Automation Agent Unix privilege escalation

Execution with unnecessary privileges vulnerability in Broadcom Automic Automation Agent Unix on Linux x64, Linux Power 64 BE, Linux Power 64 LE, zLinux (zSeries), AIX, Solaris x64, Solaris Sparc 64 allows Privilege Escalation, Target Programs with Elevated Privileges. This issue affects Automic Automation: < 24.4.4 HF1.

Affected Products

Vendor

Broadcom Inc.

Product

Automic Automation

Package Name

Agent Unix

Platforms

Linux x64
Linux Power 64 BE
Linux Power 64 LE
zLinux (zSeries)
AIX
Solaris x64
Solaris Sparc 64

Default Status

unaffected

Versions

Affected

< 24.4.4 HF1 (custom)

Unaffected

24.4.4 HF1 or later
26.0.0

Problem Types

Type	CWE ID	Description
CWE	CWE-250	CWE-250 Execution with unnecessary privileges

Type: CWE

CWE ID: CWE-250

Description: CWE-250 Execution with unnecessary privileges

Metrics

Version	Base score	Base severity	Vector
4.0	8.5	HIGH	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Version: 4.0

Base score: 8.5

Base severity: HIGH

Vector:

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Impacts

CAPEC ID	Description
CAPEC-233	CAPEC-233 Privilege Escalation
CAPEC-69	CAPEC-69 Target Programs with Elevated Privileges

CAPEC ID: CAPEC-233

Description: CAPEC-233 Privilege Escalation

CAPEC ID: CAPEC-69

Description: CAPEC-69 Target Programs with Elevated Privileges

Credits

finder

David Suchy, Citadelo (citadelo.com)

References

Hyperlink	Resource
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37512	vendor-advisory

Hyperlink: https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37512

Resource:

vendor-advisory

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Affected Products

Affected

Unaffected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References