Bmc

Patrol Agent

13 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2020-35593

Exploit
  • EPSS 0.03%
  • Veröffentlicht 05.09.2023 19:15:48
  • Zuletzt bearbeitet 21.11.2024 05:27:40

BMC PATROL Agent through 20.08.00 allows local privilege escalation via vectors involving pconfig +RESTART -host.

9.8

CVE-2023-34257

Exploit
  • EPSS 0.1%
  • Veröffentlicht 31.05.2023 20:15:10
  • Zuletzt bearbeitet 10.01.2025 15:15:14

An issue was discovered in BMC Patrol through 23.1.00. The agent's configuration can be remotely modified (and, by default, authentication is not required). Some configuration fields related to SNMP (e.g., masterAgentName or masterAgentStartLine) res...

7.8

CVE-2019-17043

  • EPSS 0.17%
  • Veröffentlicht 14.10.2019 17:15:09
  • Zuletzt bearbeitet 21.11.2024 04:31:35

An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the best1collect.exe SUID binary could allow an attacker to elevate his/her privileges to the ones of the "patrol" user by specially crafting a shared library .so file...

7.8

CVE-2019-17044

  • EPSS 0.05%
  • Veröffentlicht 14.10.2019 17:15:09
  • Zuletzt bearbeitet 21.11.2024 04:31:35

An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the PatrolAgent SUID binary could allow an attacker with "patrol" privileges to elevate his/her privileges to the ones of the "root" user by specially crafting a share...

9.8

CVE-2019-8352

  • EPSS 3.83%
  • Veröffentlicht 20.05.2019 19:29:00
  • Zuletzt bearbeitet 21.11.2024 04:49:44

By default, BMC PATROL Agent through 11.3.01 uses a static encryption key for encrypting/decrypting user credentials sent over the network to managed PATROL Agent services. If an attacker were able to capture this network traffic, they could decrypt ...

7.8

CVE-2018-20735

Exploit
  • EPSS 38.01%
  • Veröffentlicht 17.01.2019 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:02:03

An issue was discovered in BMC PATROL Agent through 11.3.01. It was found that the PatrolCli application can allow for lateral movement and escalation of privilege inside a Windows Active Directory environment. It was found that by default the Patrol...

6.9

CVE-2014-2591

Exploit
  • EPSS 0.13%
  • Veröffentlicht 14.05.2014 00:55:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Untrusted search path vulnerability in BMC Patrol for AIX 3.9.00 allows local users to gain privileges via a crafted library, related to an incorrect RPATH setting.

10

CVE-2008-5982

  • EPSS 14.03%
  • Veröffentlicht 27.01.2009 22:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Format string vulnerability in BMC PATROL Agent before 3.7.30 allows remote attackers to execute arbitrary code via format string specifiers in an invalid version number to TCP port 3181, which are not properly handled when writing a log message.

7.2

CVE-1999-1460

Exploit
  • EPSS 0.4%
  • Veröffentlicht 13.07.1999 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

BMC PATROL SNMP Agent before 3.2.07 allows local users to create arbitrary world-writeable files as root by specifying the target file as the second argument to the snmpmagt program.

10

CVE-1999-0801

  • EPSS 0.95%
  • Veröffentlicht 09.04.1999 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

BMC Patrol allows remote attackers to gain access to an agent by spoofing frames.