Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bmc patrol - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5982
Format string vulnerability in BMC PATROL Agent prior to 3.7.30 allows remote malicious users to execute arbitrary code via format string specifiers in an invalid version number to TCP port 3181, which are not properly handled when writing a log message.
Bmc Patrol Agent 3.3.00
Bmc Patrol Agent 3.4.11
Bmc Patrol Agent 3.4.00
Bmc Patrol Agent
Bmc Patrol Agent 3.2.7
Bmc Patrol Agent 3.2.5
Bmc Patrol Agent 3.2.3
Bmc Patrol Agent 3.2
NA
CVE-1999-1460
BMC PATROL SNMP Agent prior to 3.2.07 allows local users to create arbitrary world-writeable files as root by specifying the target file as the second argument to the snmpmagt program.
Bmc Patrol Agent 3.2.5
Bmc Patrol Agent 3.2.3
Bmc Patrol Agent 3.2
Bmc Patrol Agent
1 EDB exploit
NA
CVE-1999-1459
BMC PATROL Agent prior to 3.2.07 allows local users to gain root privileges via a symlink attack on a temporary file.
Bmc Patrol Agent 3.2.3
Bmc Patrol Agent 3.2
7.8
CVSSv3
CVE-2017-13130
mcmnm in BMC Patrol allows local users to gain privileges via a crafted libmcmclnx.so file in the current working directory, because it is setuid root and the RPATH variable begins with the .: substring.
Bmc Patrol -
7.5
CVSSv3
CVE-2023-34258
An issue exists in BMC Patrol prior to 22.1.00. The agent's configuration can be remotely queried. This configuration contains the Patrol account password, encrypted with a default AES key. This account can then be used to achieve remote code execution.
Bmc Patrol
7.8
CVSSv3
CVE-2016-9638
In BMC Patrol prior to 9.13.10.02, the binary "listguests64" is configured with the setuid bit. However, when executing it, it will look for a binary named "virsh" using the PATH environment variable. The "listguests64" program will then run "vi...
Bmc Patrol
7.8
CVSSv3
CVE-2018-20735
An issue exists in BMC PATROL Agent up to and including 11.3.01. It was found that the PatrolCli application can allow for lateral movement and escalation of privilege inside a Windows Active Directory environment. It was found that by default the PatrolCli / PATROL Agent applica...
Bmc Patrol Agent
1 EDB exploit
9.8
CVSSv3
CVE-2023-34257
An issue exists in BMC Patrol up to and including 23.1.00. The agent's configuration can be remotely modified (and, by default, authentication is not required). Some configuration fields related to SNMP (e.g., masterAgentName or masterAgentStartLine) result in code execution...
Bmc Patrol Agent
9.8
CVSSv3
CVE-2019-8352
By default, BMC PATROL Agent up to and including 11.3.01 uses a static encryption key for encrypting/decrypting user credentials sent over the network to managed PATROL Agent services. If an attacker were able to capture this network traffic, they could decrypt these credentials ...
Bmc Patrol Agent
1 EDB exploit
7.8
CVSSv3
CVE-2020-35593
BMC PATROL Agent up to and including 20.08.00 allows local privilege escalation via vectors involving pconfig +RESTART -host.
Bmc Patrol Agent
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »