3 matches found
CVE-2018-18862
creationtimestamp| type| source ---|---|--- 2023-06-03 11:52:05+00:00| seen| https://t.me/ctinow/115794...
U.S. Dept Of Defense: Leaks of username and password leads to CVE-2018-18862 exploitation
A set of credentials for a BMC Remedy ITSM system were publicly exposed and leaked, allowing an attacker to access the system with the rights of these users. The vulnerability, CVE-2018-18862, was exploited through incorrect access control, potentially allowing the attacker to list roles and...
CVE-2018-18862
CVE-2018-18862 affects BMC Remedy Mid-Tier versions 7.1.00 through 9.1.02.003 for BMC Remedy AR System, caused by Incorrect Access Control in ITAM forms. The issue enables information disclosure via default/admin ITAM views (e.g., TLS:PLR-Configuration Details/Default Admin View, ARServerConnecti...