Unrated severityNVD Advisory· Published Jan 15, 2020· Updated Aug 6, 2024
CVE-2015-5072
CVE-2015-5072
Description
The BIRT Engine servlet in the AR System Mid Tier component before 9.0 SP1 for BMC Remedy AR System Server allows remote authenticated users to "navigate" to arbitrary local files via the __imageid parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- BMC/AR System Mid Tierdescription
- Range: <9.0 SP1
- Range: <9.0 SP1
Patches
Vulnerability mechanics
References
2- communities.bmc.com/docs/DOC-77816mitrex_refsource_CONFIRM
- packetstormsecurity.com/files/133689/BMC-Remedy-AR-8.1-9.0-File-Inclusion.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.