Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bmc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2136
Stack-based buffer overflow in bgs_sdservice.exe in BMC Patrol PerformAgent allows remote malicious users to execute arbitrary code by connecting to TCP port 10128 and sending certain XDR data, which is not properly parsed.
Bmc Patrol Perform Agent
NA
CVE-1999-0801
BMC Patrol allows remote malicious users to gain access to an agent by spoofing frames.
Bmc Patrol Agent 3.2.3
NA
CVE-1999-0921
BMC Patrol allows any remote malicious user to flood its UDP port, causing a denial of service.
Bmc Patrol Agent 3.2.5
NA
CVE-2014-4874
BMC Track-It! 11.3.0.355 allows remote authenticated users to read arbitrary files by visiting the TrackItWeb/Attachment page.
Bmc Track-it\\! 11.3.0.355
1 EDB exploit
9.8
CVSSv3
CVE-2022-24047
This vulnerability allows remote malicious users to bypass authentication on affected installations of BMC Track-It! 20.21.01.102. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authorization of HTTP requests. The issue results f...
Bmc Track-it\\! 20.21.01.102
7.8
CVSSv3
CVE-2019-17043
An issue exists in BMC Patrol Agent 9.0.10i. Weak execution permissions on the best1collect.exe SUID binary could allow an malicious user to elevate his/her privileges to the ones of the "patrol" user by specially crafting a shared library .so file that will be loaded d...
Bmc Patrol Agent 9.0.10i
1 Github repository
8.1
CVSSv3
CVE-2017-18223
BMC Remedy AR System prior to 9.1 SP3, when Remedy AR Authentication is enabled, allows malicious users to obtain administrative access.
Bmc Remedy Action Request System
9.8
CVSSv3
CVE-2017-17674
BMC Remedy Mid Tier 9.1SP3 is affected by remote and local file inclusion. Due to the lack of restrictions on what can be targeted, the system can be vulnerable to attacks such as system fingerprinting, internal port scanning, Server Side Request Forgery (SSRF), or remote code ex...
Bmc Remedy Mid-tier 9.1
8.8
CVSSv3
CVE-2017-17677
BMC Remedy 9.1SP3 is affected by authenticated code execution. Authenticated users that have the right to create reports can use BIRT templates to run code.
Bmc Remedy Mid-tier 9.1
6.1
CVSSv3
CVE-2017-17678
BMC Remedy Mid Tier 9.1SP3 is affected by cross-site scripting (XSS). A DOM-based cross-site scripting vulnerability exists in a legacy utility.
Bmc Remedy Mid-tier 9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »