High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-03-18	CVE-2024-1605	Incorrect Default Permissions vulnerability in BMC Control-M 9.0.20/9.0.20.214/9.0.21 BMC Control-M branches 9.0.20 and 9.0.21 upon user login load all Dynamic Link Libraries (DLL) from a directory that grants Write and Read permissions to all users. local low complexity bmc CWE-276	7.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.