Описание
BMC Track-It! 11.3 allows remote attackers to gain privileges and execute arbitrary code by creating an account whose name matches that of a local system account, then performing a password reset.
Ссылки
- Broken LinkVendor Advisory
- Third Party AdvisoryVDB Entry
- Broken LinkVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:bmc:track-it\!:11.3:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.65703
Средний
5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
BMC Track-It! 11.3 allows remote attackers to gain privileges and execute arbitrary code by creating an account whose name matches that of a local system account, then performing a password reset.
EPSS
Процентиль: 98%
0.65703
Средний
5 Medium
CVSS2
Дефекты
CWE-264