Lucene search
K

219 matches found

Vulnrichment
Vulnrichment
added 2026/04/10 12:0 a.m.5 views

CVE-2026-23782

An issue was discovered in BMC Control-M/MFT 9.0.20 through 9.0.22. An API management endpoint allows unauthenticated users to obtain both an API identifier and its corresponding secret value. With these exposed secrets, an attacker could invoke privileged API operations, potentially leading to...

5.8AI score0.00272EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.8 views

PT-2026-31922

An issue was discovered in BMC Control-M/MFT 9.0.20 through 9.0.22. An API management endpoint allows unauthenticated users to obtain both an API identifier and its corresponding secret value. With these exposed secrets, an attacker could invoke privileged API operations, potentially leading to...

5.8AI score0.00272EPSS
Exploits0References3
NVD
NVD
added 2025/11/05 9:15 a.m.11 views

CVE-2025-55108

The Control-M/Agent is vulnerable to unauthenticated remote code execution, arbitrary file read and write and similar unauthorized actions when mutual SSL/TLS authentication is not enabled i.e. in the default configuration. NOTE: The vendor believes that this vulnerability only occurs when...

10CVSS0.00786EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/05 9:7 a.m.7 views

CVE-2025-55108 BMC Control-M/Agent default configuration does not enforce SSL/TLS allowing unauthorized actions and remote code execution

The Control-M/Agent is vulnerable to unauthenticated remote code execution, arbitrary file read and write and similar unauthorized actions when mutual SSL/TLS authentication is not enabled i.e. in the default configuration. NOTE: The vendor believes that this vulnerability only occurs when...

10CVSS7.6AI score0.00786EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/05 9:7 a.m.13 views

CVE-2025-55108 BMC Control-M/Agent default configuration does not enforce SSL/TLS allowing unauthorized actions and remote code execution

The Control-M/Agent is vulnerable to unauthenticated remote code execution, arbitrary file read and write and similar unauthorized actions when mutual SSL/TLS authentication is not enabled i.e. in the default configuration. NOTE: The vendor believes that this vulnerability only occurs when...

10CVSS0.00786EPSS
Exploits0References3
CVE
CVE
added 2025/11/05 9:7 a.m.17 views

CVE-2025-55108

The CVE-2025-55108 entry concerns BMC Control-M/Agent and describes unauthenticated remote code execution, plus arbitrary file read/write and similar unauthorized actions when mutual SSL/TLS authentication is not enabled (default configuration). Affected component: Control-M/Agent; root cause cen...

10CVSS7.6AI score0.00786EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/05 12:0 a.m.7 views

BMC Control-M/Agent 安全漏洞

BMC Control-M/Agent is a workload automation system from BMC USA. A security vulnerability exists in BMC Control-M/Agent that stems from not enabling mutual SSL/TLS authentication, which could lead to unauthenticated remote code execution, arbitrary file reads and writes, and similar unauthorized...

10CVSS7.6AI score0.00786EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.9 views

PT-2025-45096

Name of the Vulnerable Software and Affected Versions BMC Control-M/Agent affected versions not specified Description The Control-M/Agent is susceptible to unauthenticated remote code execution, arbitrary file read and write, and other unauthorized actions when mutual SSL/TLS authentication is no...

10CVSS7.7AI score0.00786EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-3310

Malware in sbrugna...

2.1CVSS6.4AI score0.00379EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-8844

Malware in sbrugna...

7.5CVSS7.6AI score0.00997EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-8845

Malware in sbrugna...

7.5CVSS7.5AI score0.01052EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-8842

Malware in sbrugna...

8.8CVSS8.6AI score0.01057EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-8846

Malware in sbrugna...

8.8CVSS8.6AI score0.01815EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-8841

Malware in sbrugna...

8.8CVSS8.6AI score0.01596EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-8843

Malware in sbrugna...

8.8CVSS8.6AI score0.01815EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-29568

Malicious code in bioql PyPI...

6.9CVSS6.6AI score0.00362EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-17344

Malicious code in bioql PyPI...

6.8CVSS6.3AI score0.00491EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-29572

Malicious code in bioql PyPI...

5.7CVSS6.6AI score0.0012EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-29570

Malicious code in bioql PyPI...

7.6CVSS6.6AI score0.00202EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-29567

Malicious code in bioql PyPI...

9.3CVSS6.6AI score0.00161EPSS
Exploits0References3
Rows per page
Query Builder