VYPR

Remedy ITSM Suite

by BMC Software

CVEs (2)

  • CVE-2019-16755CriSep 26, 2019
    risk 0.64cvss 9.8epss 0.03

    BMC Remedy ITSM Suite is prone to unspecified vulnerabilities in both DWP and SmartIT components, which can permit remote attackers to perform pre-authenticated remote commands execution on the Operating System running the targeted application. Affected DWP versions: versions:…

  • CVE-2022-26088MedNov 10, 2022
    risk 0.35cvss 5.4epss 0.01

    An issue was discovered in BMC Remedy before 22.1. Email-based Incident Forwarding allows remote authenticated users to inject HTML (such as an SSRF payload) into the Activity Log by placing it in the To: field. This affects rendering that occurs upon a click in the "number of…