Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NVD
NVDadded 2021/05/19 2:15 p.m.10 views

CVE-2017-17677

BMC Remedy 9.1SP3 is affected by authenticated code execution. Authenticated users that have the right to create reports can use BIRT templates to run code...

8.8CVSS0.01014EPSS
Exploits0References4
NVD
NVDadded 2021/05/19 2:15 p.m.10 views

CVE-2017-17674

BMC Remedy Mid Tier 9.1SP3 is affected by remote and local file inclusion. Due to the lack of restrictions on what can be targeted, the system can be vulnerable to attacks such as system fingerprinting, internal port scanning, Server Side Request Forgery SSRF, or remote code execution RCE...

9.8CVSS0.03285EPSS
Exploits0References4
Prion
Prionadded 2021/05/19 2:15 p.m.13 views

Cross site scripting

BMC Remedy Mid Tier 9.1SP3 is affected by cross-site scripting XSS. A DOM-based cross-site scripting vulnerability was discovered in a legacy utility...

4.3CVSS6AI score0.00465EPSS
Exploits0References4Affected Software1
Prion
Prionadded 2021/05/19 2:15 p.m.11 views

Server side request forgery (ssrf)

BMC Remedy Mid Tier 9.1SP3 is affected by remote and local file inclusion. Due to the lack of restrictions on what can be targeted, the system can be vulnerable to attacks such as system fingerprinting, internal port scanning, Server Side Request Forgery SSRF, or remote code execution RCE...

7.5CVSS9.6AI score0.03285EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2021/05/19 1:11 p.m.41 views

CVE-2017-17677

CVE-2017-17677 affects BMC Remedy 9.1SP3. Description confirms authenticated code execution: authenticated users with report-creation rights can leverage BIRT templates to run code, indicating a vulnerability in the BIRT templating workflow used by Remedy. The root cause is the ability to execute...

8.8CVSS8.7AI score0.01014EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2021/05/19 1:11 p.m.11 views

CVE-2017-17675

BMC Remedy Mid Tier 9.1SP3 is affected by log hijacking. Remote logging can be accessed by unauthenticated users, allowing for an attacker to hijack the system logs. This data can include user names and HTTP data...

5.4AI score0.00327EPSS
Exploits0References4
CVE
CVEadded 2021/05/19 1:11 p.m.48 views

CVE-2017-17675

CVE-2017-17675 affects BMC Remedy Mid Tier 9.1SP3. The issue is log hijacking: remote logging can be accessed by unauthenticated users, enabling attackers to hijack system logs and potentially access usernames and HTTP data. The connected sources confirm affected product/version and the data expo...

5.3CVSS5.3AI score0.00327EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2021/05/19 1:11 p.m.34 views

CVE-2017-17678

Affected product: BMC Remedy Mid Tier 9.1SP3. Vulnerability: DOM-based cross-site scripting (XSS) in a legacy utility within the web interface. Root cause: likely improper handling of user-controllable input in the legacy utility, enabling script execution in the browser context. Impact: cross-si...

6.1CVSS6AI score0.00465EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2021/05/19 1:10 p.m.50 views

CVE-2017-17674

CVE-2017-17674 affects BMC Remedy Mid Tier 9.1SP3. The root cause is a lack of restrictions on what can be targeted in file inclusion, enabling attacks such as system fingerprinting, internal port scanning, SSRF, and potentially remote code execution (RCE). Impact is described across multiple sou...

9.8CVSS9.6AI score0.03285EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder