QwikSec

Security Database

CVE

CWE

Training

CVE-2017-17674

Published: May 19, 2021

Modified: Aug 5, 2024

PUBLISHED

Description

BMC Remedy Mid Tier 9.1SP3 is affected by remote and local file inclusion. Due to the lack of restrictions on what can be targeted, the system can be vulnerable to attacks such as system fingerprinting, internal port scanning, Server Side Request Forgery (SSRF), or remote code execution (RCE).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

x_refsource_MISC

http://remedy.com

x_refsource_MISC

https://docs.bmc.com/docs/ars91/en/9-1-00-fixes-available-for-remedy-ar-system-security-vulnerabilities-800555806.html

x_refsource_MISC

https://seclists.org/fulldisclosure/2017/Oct/52

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.