CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

95 matches found

NVD•added 2026/04/10 4:16 p.m.•0 views

CVE-2026-23781

An issue was discovered in BMC Control-M/MFT 9.0.20 through 9.0.22. A set of default debug user credentials is hardcoded in cleartext within the application package. If left unchanged, these credentials can be easily obtained and may allow unauthorized access to the MFT API debug interface...

9.8CVSS0.00075EPSS

Exploits0References2

EUVD•added 2026/04/10 3:31 p.m.•1 views

EUVD-2026-21371

An issue was discovered in BMC Control-M/MFT 9.0.20 through 9.0.22. An API management endpoint allows unauthenticated users to obtain both an API identifier and its corresponding secret value. With these exposed secrets, an attacker could invoke privileged API operations, potentially leading to...

5.8AI score0.00098EPSS

Exploits0References3

CNNVD•added 2026/04/10 12:0 a.m.•2 views

BMC Control-M/MFT 安全漏洞

BMC Control-M/MFT is an enterprise-level file transfer and job scheduling integration management software developed by the American company BMC. Versions of BMC Control-M/MFT 9.0.22 and earlier contained security vulnerabilities. These vulnerabilities stemmed from API management endpoints that...

7.5CVSS5.8AI score0.00098EPSS

Exploits0References3

Vulnrichment•added 2026/04/10 12:0 a.m.•1 views

CVE-2026-23781

5.8AI score0.00075EPSS

Exploits0References2

CNNVD•added 2026/04/10 12:0 a.m.•3 views

BMC Control-M/MFT 安全漏洞

8.8CVSS6.3AI score0.00215EPSS

Exploits0References3

Cvelist•added 2026/04/10 12:0 a.m.•23 views

CVE-2026-23780

An issue was discovered in BMC Control-M/MFT 9.0.20 through 9.0.22. A SQL injection vulnerability in the MFT API's debug interface allows an authenticated attacker to inject malicious queries due to improper input validation and unsafe dynamic SQL handling. Successful exploitation can enable...

0.00215EPSS

Exploits0References2

CNNVD•added 2025/11/05 12:0 a.m.•4 views

BMC Control-M/Agent 安全漏洞

BMC Control-M/Agent is a workload automation system from BMC USA. A security vulnerability exists in BMC Control-M/Agent that stems from not enabling mutual SSL/TLS authentication, which could lead to unauthenticated remote code execution, arbitrary file reads and writes, and similar unauthorized...

10CVSS7.6AI score0.00438EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2019-8842

Malware in sbrugna...

8.8CVSS8.6AI score0.00306EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-8845

Malware in sbrugna...

7.5CVSS7.5AI score0.00391EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-8846

Malware in sbrugna...

8.8CVSS8.6AI score0.01065EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-8844

Malware in sbrugna...

7.5CVSS7.6AI score0.00347EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-8841

Malware in sbrugna...

8.8CVSS8.6AI score0.00675EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-8843

Malware in sbrugna...

8.8CVSS8.6AI score0.01065EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-42868