CVE 8.5 HIGH

Automic Automation Agent Unix privilege escalation_CVE-2026-8370

May 19, 2026 invoker category_cve

8.5 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Description

Execution with unnecessary privileges vulnerability in Broadcom Automic Automation Agent Unix on Linux x64, Linux Power 64 BE, Linux Power 64 LE, zLinux (zSeries), AIX, Solaris x64, Solaris Sparc 64 allows Privilege Escalation, Target Programs with Elevated Privileges.

This issue affects Automic Automation: < 24.4.4 HF1.

AI Analysis

Privilege escalation vulnerability in Automic Automation Agent Unix due to execution with unnecessary privileges

Basic Information

ID CVE-2026-8370

Source ca

Published May 19, 2026 at 18:42

Affected Product

Vendor Broadcom

Product Automic Automation

Version < 24.4.4 HF1

Affected Versions Broadcom Automic Automation < 24.4.4 HF1

CWE Classification

CWE-250

AI Assessment

AI Score 8.5 / 10

AI Severity High

Vendor Broadcom

Product Automic Automation

Version < 24.4.4 HF1

References

support.broadcom.com /web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37512

{
    "lastseen": "",
    "description": "Execution with unnecessary privileges vulnerability in Broadcom Automic Automation Agent Unix on Linux x64, Linux Power 64 BE, Linux Power 64 LE, zLinux (zSeries), AIX, Solaris x64, Solaris Sparc 64 allows Privilege Escalation, Target Programs with Elevated Privileges.\n\nThis issue affects Automic Automation: < 24.4.4 HF1.",
    "published": "2026-05-19T18:42:00.155Z",
    "modified": "2026-05-19T18:42:00.155Z",
    "type": "cve",
    "title": "Automic Automation Agent Unix privilege escalation",
    "source": "ca",
    "references": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37512",
    "id": "CVE-2026-8370",
    "bulletinFamily": "",
    "cwe": [
        "CWE-250"
    ],
    "cvelist": null,
    "sourceData": "Broadcom Automic Automation < 24.4.4 HF1",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Automic Automation",
    "version": "< 24.4.4 HF1",
    "vendor": "Broadcom",
    "ai_description": "Privilege escalation vulnerability in Automic Automation Agent Unix due to execution with unnecessary privileges",
    "ai_severity": "High",
    "ai_vendor": "Broadcom",
    "ai_product": "Automic Automation",
    "ai_version": "< 24.4.4 HF1",
    "ai_score": 8.5
}

💭 Join the Security Discussion ❌ Cancel Reply