Filtered by vendor Bmc
Subscriptions
Filtered by product Control-m
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-39122 | 1 Bmc | 1 Control-m | 2024-08-02 | 9.8 Critical |
| BMC Control-M through 9.0.20.200 allows SQL injection via the /RF-Server/report/deleteReport report-id parameter. This is fixed in 9.0.21 (and is also fixed by a patch for 9.0.20.200). | ||||
| CVE-2023-26550 | 1 Bmc | 1 Control-m | 2024-08-02 | 9.8 Critical |
| A SQL injection vulnerability in BMC Control-M before 9.0.20.214 allows attackers to execute arbitrary SQL commands via the memname JSON field. | ||||
Page 1 of 1.