BMC.Patrol.Agent.Privilege.Escalation.Remote.Command.Execution
Description
This indicates an attack attempt to exploit an Remote Command Execution vulnerability in BMC Patrol Agent.
The vulnerability is due to an design error when the vulnerable software handles a command request from an authenticated user without root or admin privilege. A remote authenticate attacker may be able to exploit this to execute command within the context of the root user.
Affected Products
BMC Patrol Agent version 11.3.01 and prior
Impact
Privilege Escalation: Remote attackers can leverage their privileges on vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch or updates available for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |