Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bmc patrol - vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2016-9638
In BMC Patrol prior to 9.13.10.02, the binary "listguests64" is configured with the setuid bit. However, when executing it, it will look for a binary named "virsh" using the PATH environment variable. The "listguests64" program will then run "vi...
Bmc Patrol
7.2
CVSSv2
CVE-1999-1460
BMC PATROL SNMP Agent prior to 3.2.07 allows local users to create arbitrary world-writeable files as root by specifying the target file as the second argument to the snmpmagt program.
Bmc Patrol Agent 3.2.5
Bmc Patrol Agent
Bmc Patrol Agent 3.2
Bmc Patrol Agent 3.2.3
1 EDB exploit
7.2
CVSSv2
CVE-1999-1459
BMC PATROL Agent prior to 3.2.07 allows local users to gain root privileges via a symlink attack on a temporary file.
Bmc Patrol Agent 3.2
Bmc Patrol Agent 3.2.3
6.9
CVSSv2
CVE-2014-2591
Untrusted search path vulnerability in BMC Patrol for AIX 3.9.00 allows local users to gain privileges via a crafted library, related to an incorrect RPATH setting.
Bmc Patrol Agent 3.9.00
5
CVSSv2
CVE-2021-31791
In Hardware Sentry KM prior to 10.0.01 for BMC PATROL, a cleartext password may be discovered after a failure or timeout of a command.
5
CVSSv2
CVE-1999-0921
BMC Patrol allows any remote malicious user to flood its UDP port, causing a denial of service.
Bmc Patrol Agent 3.2.5
4.6
CVSSv2
CVE-2019-17043
An issue exists in BMC Patrol Agent 9.0.10i. Weak execution permissions on the best1collect.exe SUID binary could allow an malicious user to elevate his/her privileges to the ones of the "patrol" user by specially crafting a shared library .so file that will be loaded d...
Bmc Patrol Agent 9.0.10i
1 Github repository
NA
CVE-2020-35593
BMC PATROL Agent up to and including 20.08.00 allows local privilege escalation via vectors involving pconfig +RESTART -host.
Bmc Patrol Agent
NA
CVE-2023-34257
An issue exists in BMC Patrol up to and including 23.1.00. The agent's configuration can be remotely modified (and, by default, authentication is not required). Some configuration fields related to SNMP (e.g., masterAgentName or masterAgentStartLine) result in code execution...
Bmc Patrol Agent
NA
CVE-2023-34258
An issue exists in BMC Patrol prior to 22.1.00. The agent's configuration can be remotely queried. This configuration contains the Patrol account password, encrypted with a default AES key. This account can then be used to achieve remote code execution.
Bmc Patrol
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2