AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2016-9795: The casrvc program in CA Common Services, as used in CA Client Automation 12.8, 12.9, and 14.0; CA SystemEDGE 5.8.2 and

highvulnerability

security

Source: NVD/CVE DatabaseJanuary 27, 2017CVE-2016-9795

Summary

A vulnerability in the casrvc program (a service component used by multiple CA software products) allows local users (people with access to the same computer) to modify any file on the system and gain root privileges (full administrative control) because the program doesn't properly validate input or check permissions. This affects multiple versions of CA software across several operating systems including Linux, AIX, HP-UX, and Solaris.

Vulnerability Details

CVSS Score

7.8(high)

EPSS (30-day exploit probability)

EPSS: 0.1%

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-20

Original source: https://nvd.nist.gov/vuln/detail/CVE-2016-9795

First tracked: February 15, 2026 at 08:53 PM

Classified by LLM (prompt v3) · confidence: 95%