VYPR

Remedy

by BMC Software

CVEs (2)

  • CVE-2022-26088Nov 10, 2022
    risk 0.00cvss epss 0.01

    An issue was discovered in BMC Remedy before 22.1. Email-based Incident Forwarding allows remote authenticated users to inject HTML (such as an SSRF payload) into the Activity Log by placing it in the To: field. This affects rendering that occurs upon a click in the "number of…

  • CVE-2017-17677May 19, 2021
    risk 0.00cvss epss 0.01

    BMC Remedy 9.1SP3 is affected by authenticated code execution. Authenticated users that have the right to create reports can use BIRT templates to run code.