Known Vulnerabilities for Remedy Mid-tier by Bmc
Listed below are 5 of the newest known vulnerabilities associated with "Remedy Mid-tier" by "Bmc".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2018-18862 json | BMC Remedy Mid-Tier 7.1.00 and 9.1.02.003 for BMC Remedy AR System has Incorrect Access Control in ITAM forms, as demonstrate... | 8.8 - HIGH | 2019-03-21 | 2019-10-03 |
| CVE-2017-17678 json | BMC Remedy Mid Tier 9.1SP3 is affected by cross-site scripting (XSS). A DOM-based cross-site scripting vulnerability was disc... | 6.1 - MEDIUM | 2021-05-19 | 2021-06-01 |
| CVE-2017-17677 json | BMC Remedy 9.1SP3 is affected by authenticated code execution. Authenticated users that have the right to create reports can ... | 8.8 - HIGH | 2021-05-19 | 2021-06-01 |
| CVE-2017-17675 json | BMC Remedy Mid Tier 9.1SP3 is affected by log hijacking. Remote logging can be accessed by unauthenticated users, allowing fo... | 5.3 - MEDIUM | 2021-05-19 | 2021-05-25 |
| CVE-2017-17674 json | BMC Remedy Mid Tier 9.1SP3 is affected by remote and local file inclusion. Due to the lack of restrictions on what can be tar... | 9.8 - CRITICAL | 2021-05-19 | 2021-05-25 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Bmc | Remedy Mid-tier | 7.1.00 |