VYPR

Identity Management Suite

by BMC Software

CVEs (2)

  • CVE-2026-0504LowJan 13, 2026
    risk 0.25cvss 3.8epss 0.00

    Due to insufficient input handling, the SAP Identity Management REST interface allows an authenticated administrator to submit specially crafted malicious REST requests that are processed by JNDI operations without adequate input neutralization. This may lead to limited…

  • CVE-2012-2959Jun 11, 2012
    risk 0.03cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in password-manager/changePasswords.do in BMC Identity Management Suite 7.5.00.103 allows remote attackers to hijack the authentication of administrators for requests that change passwords.