Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:59 a.m.9 views

CVE-2024-1606

Lack of input sanitization in BMC Control-M branches 9.0.20 and 9.0.21 allows logged-in users for manipulation of generated web pages via injection of HTML code. This might lead to a successful phishing attack for example by tricking users into using a hyperlink pointing to a website controlled b...

5.4CVSS7AI score0.00432EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/18 10:0 a.m.17 views

CVE-2024-1606 HTML injection in BMC Control-M

Lack of input sanitization in BMC Control-M branches 9.0.20 and 9.0.21 allows logged-in users for manipulation of generated web pages via injection of HTML code. This might lead to a successful phishing attack for example by tricking users into using a hyperlink pointing to a website controlled b...

4.6CVSS5.2AI score0.00432EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/18 10:0 a.m.16 views

CVE-2024-1606 HTML injection in BMC Control-M

Lack of input sanitization in BMC Control-M branches 9.0.20 and 9.0.21 allows logged-in users for manipulation of generated web pages via injection of HTML code. This might lead to a successful phishing attack for example by tricking users into using a hyperlink pointing to a website controlled b...

4.6CVSS6.9AI score0.00432EPSS
Exploits0References3
CVE
CVE
added 2024/03/18 10:0 a.m.67 views

CVE-2024-1606

CVE-2024-1606 describes a lack of input sanitization in BMC Control-M branches 9.0.20 and 9.0.21 that allows logged-in users to manipulate generated web pages by injecting HTML code, potentially enabling phishing via malicious links. The issue affects the web/UI layer and is caused by insufficien...

5.4CVSS4.9AI score0.00432EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder