Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
By default, BMC PATROL Agent through 11.3.01 uses a static encryption key for encrypting/decrypting user credentials sent over the network to managed PATROL Agent services. If an attacker were able to capture this network traffic, they could decrypt these credentials and use them to execute code or escalate privileges on the network.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BMC Software PATROL Agent 信任管理问题漏洞
Vulnerability Description
Bmc Software BMC Software PATROL Agent是美国BMC Software(Bmc Software)公司的一款BMC ProactiveNet架构的核心组件,它主要用于监控和管理分布式环境。 BMC PATROL Agent 11.3.01及之前版本中存在信任管理问题漏洞,该漏洞源于程序使用静态密钥加密/解密用户凭证。攻击者可利用该漏洞执行代码或提升权限。
CVSS Information
N/A
Vulnerability Type
N/A