CVE-2014-8270

2014-12-1211:00:00

certcc

www.cve.org

7.8 High

AI Score

Confidence

High

0.021 Low

EPSS

Percentile

89.2%

JSON

BMC Track-It! 11.3 allows remote attackers to gain privileges and execute arbitrary code by creating an account whose name matches that of a local system account, then performing a password reset.

References

support.numarasoftware.com/support/articles.asp?how=%20AND%20&mode=detail&kcriteria=7508&ID=7654

www.zerodayinitiative.com/advisories/ZDI-14-419/