2022

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

baramundi

critical

NVD

Published: 2022-10-26

Updated: 2024-05-14

Summary

baramundi Management Agent (bMA) in baramundi Management Suite (bMS) 2021 R1 and R2 and 2022 R1 allows remote code execution. This is fixed in security update S-2022-01, which contains fixed bMA setup files for these versions. This also is fixed in baramundi Management Suite 2022 R2.

Vulnerable Configurations

Part	Description	Count
Application	Baramundi Baramundi Management Suite 2022 Baramundi Management Suite 2021	3

References

https://www.baramundi.com/de-de/security-info/s-2022-01/
https://www.baramundi.com/en-us/security-info/s-2022-01/