Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bmc patrol agent vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2020-35593
BMC PATROL Agent up to and including 20.08.00 allows local privilege escalation via vectors involving pconfig +RESTART -host.
Bmc Patrol Agent
NA
CVE-2023-34257
An issue exists in BMC Patrol up to and including 23.1.00. The agent's configuration can be remotely modified (and, by default, authentication is not required). Some configuration fields related to SNMP (e.g., masterAgentName or masterAgentStartLine) result in code execution...
Bmc Patrol Agent
7.2
CVSSv2
CVE-2019-17044
An issue exists in BMC Patrol Agent 9.0.10i. Weak execution permissions on the PatrolAgent SUID binary could allow an attacker with "patrol" privileges to elevate his/her privileges to the ones of the "root" user by specially crafting a shared library .so file...
Bmc Patrol Agent 9.0.10i
1 Github repository
4.6
CVSSv2
CVE-2019-17043
An issue exists in BMC Patrol Agent 9.0.10i. Weak execution permissions on the best1collect.exe SUID binary could allow an malicious user to elevate his/her privileges to the ones of the "patrol" user by specially crafting a shared library .so file that will be loaded d...
Bmc Patrol Agent 9.0.10i
1 Github repository
7.5
CVSSv2
CVE-2019-8352
By default, BMC PATROL Agent up to and including 11.3.01 uses a static encryption key for encrypting/decrypting user credentials sent over the network to managed PATROL Agent services. If an attacker were able to capture this network traffic, they could decrypt these credentials ...
Bmc Patrol Agent
1 EDB exploit
7.2
CVSSv2
CVE-2018-20735
An issue exists in BMC PATROL Agent up to and including 11.3.01. It was found that the PatrolCli application can allow for lateral movement and escalation of privilege inside a Windows Active Directory environment. It was found that by default the PatrolCli / PATROL Agent applica...
Bmc Patrol Agent
1 EDB exploit
6.9
CVSSv2
CVE-2014-2591
Untrusted search path vulnerability in BMC Patrol for AIX 3.9.00 allows local users to gain privileges via a crafted library, related to an incorrect RPATH setting.
Bmc Patrol Agent 3.9.00
10
CVSSv2
CVE-2011-0975
Stack-based buffer overflow in BMC PATROL Agent Service Daemon for in Performance Analysis for Servers, Performance Assurance for Servers, and Performance Assurance for Virtual Servers 7.4.00 up to and including 7.5.10; Performance Analyzer and Performance Predictor for Servers 7...
Bmc Performance Analysis For Servers 7.4.00
Bmc Performance Analysis For Servers 7.4.10
Bmc Performance Analysis For Servers 7.5.10
Bmc Performance Analysis For Servers 7.4.15
Bmc Performance Analysis For Servers 7.5.00
Bmc Performance Assurance For Servers 7.4.15
Bmc Performance Assurance For Servers 7.5.00
Bmc Performance Assurance For Servers 7.5.10
Bmc Performance Assurance For Servers 7.4.00
Bmc Performance Assurance For Servers 7.4.10
Bmc Performance Assurance For Virtual Servers 7.5.10
Bmc Performance Assurance For Virtual Servers 7.4.00
Bmc Performance Assurance For Virtual Servers 7.4.10
Bmc Performance Assurance For Virtual Servers 7.4.15
Bmc Performance Assurance For Virtual Servers 7.5.00
Bmc Performance Analyzer For Servers 7.4.15
Bmc Performance Analyzer For Servers 7.5.00
Bmc Performance Analyzer For Servers 7.5.10
Bmc Performance Analyzer For Servers 7.4.00
Bmc Performance Analyzer For Servers 7.4.10
Bmc Performance Predictor For Servers 7.4.10
Bmc Performance Predictor For Servers 7.4.15
10
CVSSv2
CVE-2008-5982
Format string vulnerability in BMC PATROL Agent prior to 3.7.30 allows remote malicious users to execute arbitrary code via format string specifiers in an invalid version number to TCP port 3181, which are not properly handled when writing a log message.
Bmc Patrol Agent 3.4.00
Bmc Patrol Agent 3.3.00
Bmc Patrol Agent 3.2.3
Bmc Patrol Agent 3.2.5
Bmc Patrol Agent 3.4.11
Bmc Patrol Agent
Bmc Patrol Agent 3.2
Bmc Patrol Agent 3.2.7
7.5
CVSSv2
CVE-2007-2136
Stack-based buffer overflow in bgs_sdservice.exe in BMC Patrol PerformAgent allows remote malicious users to execute arbitrary code by connecting to TCP port 10128 and sending certain XDR data, which is not properly parsed.
Bmc Patrol Perform Agent
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »