Skip to main content

Bladelogic Server Automation Console

3 CVEs product

Monthly

CVE-2016-4322 CRITICAL Act Now

BMC BladeLogic Server Automation (BSA) before 8.7 Patch 3 allows remote attackers to bypass authentication and consequently read arbitrary files or possibly have unspecified other impact by. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Bladelogic Server Automation Console
NVD
CVSS 3.0
9.8
EPSS
2.4%
CVE-2016-1543 HIGH POC PATCH THREAT Act Now

The RPC API in the RSCD agent in BMC BladeLogic Server Automation (BSA) 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote attackers to bypass authorization and reset arbitrary. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 73.0%.

Authentication Bypass Bladelogic Server Automation Console
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
73.0%
Threat
5.2
CVE-2016-1542 HIGH POC PATCH THREAT Act Now

The RPC API in RSCD agent in BMC BladeLogic Server Automation (BSA) 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote attackers to bypass authorization and enumerate users by. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 71.3%.

Authentication Bypass Bladelogic Server Automation Console
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
71.3%
Threat
5.1
EPSS 2% CVSS 9.8
CRITICAL Act Now

BMC BladeLogic Server Automation (BSA) before 8.7 Patch 3 allows remote attackers to bypass authentication and consequently read arbitrary files or possibly have unspecified other impact by. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Bladelogic Server Automation Console
NVD
EPSS 73% 5.2 CVSS 7.5
HIGH POC PATCH THREAT Act Now

The RPC API in the RSCD agent in BMC BladeLogic Server Automation (BSA) 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote attackers to bypass authorization and reset arbitrary. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 73.0%.

Authentication Bypass Bladelogic Server Automation Console
NVD Exploit-DB
EPSS 71% 5.1 CVSS 7.5
HIGH POC PATCH THREAT Act Now

The RPC API in RSCD agent in BMC BladeLogic Server Automation (BSA) 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote attackers to bypass authorization and enumerate users by. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 71.3%.

Authentication Bypass Bladelogic Server Automation Console
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy