Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
patrol vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-35593
BMC PATROL Agent up to and including 20.08.00 allows local privilege escalation via vectors involving pconfig +RESTART -host.
Bmc Patrol Agent
9.8
CVSSv3
CVE-2023-34257
An issue exists in BMC Patrol up to and including 23.1.00. The agent's configuration can be remotely modified (and, by default, authentication is not required). Some configuration fields related to SNMP (e.g., masterAgentName or masterAgentStartLine) result in code execution...
Bmc Patrol Agent
7.5
CVSSv3
CVE-2023-34258
An issue exists in BMC Patrol prior to 22.1.00. The agent's configuration can be remotely queried. This configuration contains the Patrol account password, encrypted with a default AES key. This account can then be used to achieve remote code execution.
Bmc Patrol
7.5
CVSSv3
CVE-2021-31791
In Hardware Sentry KM prior to 10.0.01 for BMC PATROL, a cleartext password may be discovered after a failure or timeout of a command.
5.9
CVSSv3
CVE-2019-13163
The Fujitsu TLS library allows a man-in-the-middle attack. This affects Interstage Application Development Cycle Manager V10 and other versions, Interstage Application Server V12 and other versions, Interstage Business Application Manager V2 and other versions, Interstage Informa...
Fujitsu Gp7000f Firmware -
Fujitsu Primepower Firmware -
Fujitsu Gps Firmware -
Fujitsu Sparc Enterprise M3000 Firmware -
Fujitsu Sparc Enterprise M4000 Firmware -
Fujitsu Sparc Enterprise M5000 Firmware -
Fujitsu Sparc Enterprise M8000 Firmware -
Fujitsu Sparc Enterprise M9000 Firmware -
Fujitsu Sparc M12-1 Firmware -
Fujitsu Sparc M12-2 Firmware -
Fujitsu Sparc M12-2s Firmware -
Fujitsu Primergy Rx2530 M5 Firmware -
Fujitsu Primergy Rx2540 M5 Firmware -
Fujitsu Primergy Rx4770 M5 Firmware -
Fujitsu Primergy Tx2550 M5 Firmware -
Fujitsu Granpower 5000 Firmware -
Fujitsu Celsius Firmware -
Fujitsu Primequest Firmware -
Fujitsu Interstage Application Development Cycle Manager 10.0
Fujitsu Interstage Application Development Cycle Manager 10.0a
Fujitsu Interstage Application Development Cycle Manager 10.1
Fujitsu Interstage Application Development Cycle Manager 10.1.1
7.8
CVSSv3
CVE-2019-17044
An issue exists in BMC Patrol Agent 9.0.10i. Weak execution permissions on the PatrolAgent SUID binary could allow an attacker with "patrol" privileges to elevate his/her privileges to the ones of the "root" user by specially crafting a shared library .so file...
Bmc Patrol Agent 9.0.10i
1 Github repository
7.8
CVSSv3
CVE-2019-17043
An issue exists in BMC Patrol Agent 9.0.10i. Weak execution permissions on the best1collect.exe SUID binary could allow an malicious user to elevate his/her privileges to the ones of the "patrol" user by specially crafting a shared library .so file that will be loaded d...
Bmc Patrol Agent 9.0.10i
1 Github repository
9.8
CVSSv3
CVE-2019-8352
By default, BMC PATROL Agent up to and including 11.3.01 uses a static encryption key for encrypting/decrypting user credentials sent over the network to managed PATROL Agent services. If an attacker were able to capture this network traffic, they could decrypt these credentials ...
Bmc Patrol Agent
1 EDB exploit
6.5
CVSSv3
CVE-2019-1849
A vulnerability in the Border Gateway Patrol (BGP) Multiprotocol Label Switching (MPLS)-based Ethernet VPN (EVPN) implementation of Cisco IOS XR Software could allow an unauthenticated, adjacent malicious user to trigger a denial of service (DoS) condition on an affected device. ...
Cisco Ios Xr
7.8
CVSSv3
CVE-2018-20735
An issue exists in BMC PATROL Agent up to and including 11.3.01. It was found that the PatrolCli application can allow for lateral movement and escalation of privilege inside a Windows Active Directory environment. It was found that by default the PatrolCli / PATROL Agent applica...
Bmc Patrol Agent
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »