Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
BMC Track-It! GetData Missing Authorization Information Disclosure Vulnerability
Vulnerability Description
BMC Track-It! GetData Missing Authorization Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of BMC Track-It!. Authentication is required to exploit this vulnerability. The specific flaw exists within the GetData endpoint. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-14527.
CVSS Information
N/A
Vulnerability Type
授权机制缺失
Vulnerability Title
Bmc Software Track-It! 授权问题漏洞
Vulnerability Description
Bmc Software Track-It!是美国Bmc Software公司的一个 It 帮助台软件。用于带有资产管理的帮助台和服务台。 Bmc Software Track-It! 存在授权问题漏洞,该漏洞源于 GetData 端点中。 该问题是由于在允许访问功能之前缺乏授权造成的。 攻击者可以利用此漏洞来泄露存储的凭据,从而导致进一步的入侵。
CVSS Information
N/A
Vulnerability Type
N/A