Vulnerabilities > BMC > Low

DATE CVE VULNERABILITY TITLE RISK
2019-07-26 CVE-2019-1010147 Cross-site Scripting vulnerability in multiple products
Yellowfin Smart Reporting All Versions Prior to 7.3 is affected by: Incorrect Access Control - Privileges Escalation.
3.5
2018-03-12 CVE-2017-18228 Cross-site Scripting vulnerability in BMC Remedy Action Request System
Remedy Mid Tier in BMC Remedy AR System 9.1 allows XSS via the ATTKey parameter in an arsys/servlet/AttachServlet request.
network
bmc CWE-79
3.5
2005-10-26 CVE-2005-3311 Unspecified vulnerability in BMC Software Control-M Agent 6.1.03
BMC Software Control-M 6.1.03 for Solaris, and possibly other platforms, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
local
low complexity
bmc
2.1