Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bmc server automation vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-9453
BMC Server Automation prior to 8.9.01 patch 1 allows Process Spawner command execution because of authentication bypass.
Bmc Server Automation
9.8
CVSSv3
CVE-2016-4322
BMC BladeLogic Server Automation (BSA) prior to 8.7 Patch 3 allows remote malicious users to bypass authentication and consequently read arbitrary files or possibly have unspecified other impact by leveraging a "logic flaw" in the authentication process.
Bmc Bladelogic Server Automation Console 8.7.00
7.5
CVSSv3
CVE-2016-1542
The RPC API in RSCD agent in BMC BladeLogic Server Automation (BSA) 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote malicious users to bypass authorization and enumerate users by sending an action packet to xmlrpc after an authorization failure.
Bmc Bladelogic Server Automation Console 8.6.00
Bmc Bladelogic Server Automation Console 8.7.00
Bmc Bladelogic Server Automation Console 8.2.03
Bmc Bladelogic Server Automation Console 8.5.00
Bmc Bladelogic Server Automation Console 8.5.01
Bmc Bladelogic Server Automation Console 8.3.03
Bmc Bladelogic Server Automation Console 8.2.04
Bmc Bladelogic Server Automation Console 8.3.00
Bmc Bladelogic Server Automation Console 8.3.01
Bmc Bladelogic Server Automation Console 8.2.02
Bmc Bladelogic Server Automation Console 8.3.02
2 EDB exploits
3 Github repositories
7.5
CVSSv3
CVE-2016-1543
The RPC API in the RSCD agent in BMC BladeLogic Server Automation (BSA) 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote malicious users to bypass authorization and reset arbitrary user passwords by sending an action packet to xmlrpc after an authorization fa...
Bmc Bladelogic Server Automation Console 8.6.00
Bmc Bladelogic Server Automation Console 8.7.00
Bmc Bladelogic Server Automation Console 8.2.03
Bmc Bladelogic Server Automation Console 8.5.00
Bmc Bladelogic Server Automation Console 8.5.01
Bmc Bladelogic Server Automation Console 8.3.03
Bmc Bladelogic Server Automation Console 8.2.04
Bmc Bladelogic Server Automation Console 8.3.00
Bmc Bladelogic Server Automation Console 8.3.01
Bmc Bladelogic Server Automation Console 8.2.02
Bmc Bladelogic Server Automation Console 8.3.02
2 EDB exploits
2 Github repositories
5.3
CVSSv3
CVE-2016-5063
The RSCD agent in BMC Server Automation prior to 8.6 SP1 Patch 2 and 8.7 before Patch 3 on Windows might allow remote malicious users to bypass authorization checks and make an RPC call via unspecified vectors.
Bmc Server Automation
2 EDB exploits
2 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started