37 matches found
EUVD-2017-18386
Malware in sbrugna...
EUVD-2016-5322
Malware in sbrugna...
CVE-2017-9453
BMC Server Automation before 8.9.01 patch 1 allows Process Spawner command execution because of authentication bypass...
CVE-2017-9453
BMC Server Automation before 8.9.01 patch 1 allows Process Spawner command execution because of authentication bypass...
CVE-2017-9453
BMC Server Automation before 8.9.01 patch 1 allows Process Spawner command execution because of authentication bypass...
CVE-2017-9453
BMC Server Automation before 8.9.01 patch 1 allows Process Spawner command execution because of authentication bypass...
CVE-2017-9453
BMC Server Automation before 8.9.01 patch 1 allows Process Spawner command execution because of authentication bypass...
CVE-2022-38658 HCL BigFix Server Automation (SA) is affected by a security vulnerability around Notification Service
BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed...
cPanel Authorization Issues Vulnerability (CNVD-2019-36130)
cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An authorization issue vulnerability exists in cPanel. Detailed vulnerability details are not available at this time...
BMC Server Automation RSCD Agent - NSH Remote Command Execution Exploit
This Metasploit module exploits a weak access control check in the BMC Server Automation RSCD agent that allows arbitrary operating system commands to be executed without authentication. Note: Under Windows, non-powershell commands may need to be prefixed with 'cmd /c'. This module requires...
BMC Server Automation RSCD Agent NSH Remote Command Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'BMC Server Automation RSCD Agent NSH Remote ' \ 'Command Execution', 'Description' = %q This module exploits a weak access control check in the B...
CVE-2016-5063
The RSCD agent in BMC Server Automation before 8.6 SP1 Patch 2 and 8.7 before Patch 3 on Windows might allow remote attackers to bypass authorization checks and make an RPC call via unspecified vectors...
Authorization
The RSCD agent in BMC Server Automation before 8.6 SP1 Patch 2 and 8.7 before Patch 3 on Windows might allow remote attackers to bypass authorization checks and make an RPC call via unspecified vectors...
CVE-2016-5063
The RSCD agent in BMC Server Automation before 8.6 SP1 Patch 2 and 8.7 before Patch 3 on Windows might allow remote attackers to bypass authorization checks and make an RPC call via unspecified vectors...
CVE-2016-5063
CVE-2016-5063 affects the Windows RSCD agent in BMC Server Automation prior to 8.6 SP1 Patch 2 and 8.7 prior to Patch 3. The issue allows remote attackers to bypass authorization and invoke RPC calls via unspecified vectors. Public exploit materials exist (e.g., Exploit-DB 43934) showing Windows ...
CVE-2016-5063
The RSCD agent in BMC Server Automation before 8.6 SP1 Patch 2 and 8.7 before Patch 3 on Windows might allow remote attackers to bypass authorization checks and make an RPC call via unspecified vectors...
CVE-2016-4322
BMC BladeLogic Server Automation BSA before 8.7 Patch 3 allows remote attackers to bypass authentication and consequently read arbitrary files or possibly have unspecified other impact by leveraging a "logic flaw" in the authentication process...
CVE-2016-4322
BMC BladeLogic Server Automation BSA before 8.7 Patch 3 allows remote attackers to bypass authentication and consequently read arbitrary files or possibly have unspecified other impact by leveraging a "logic flaw" in the authentication process...
CVE-2016-4322
CVE-2016-4322 affects BMC BladeLogic Server Automation (BSA) prior to 8.7 Patch 3. The flaw is in the authentication logic, allowing remote attackers to bypass authentication and read arbitrary files or cause other unspecified impact. The vulnerability is exploitable remotely with no authenticati...
BMC Server Automation Authentication Bypass Vulnerability
BMC Server Automation is a suite of platforms for managing, controlling, and enforcing configuration changes in data centers from BMC Software, USA. An authentication bypass vulnerability exists in BMC Server Automation version 8.7 Patch 2 and earlier. An attacker could exploit this vulnerability...