Vulnerabilities > BMC > Server Automation

DATE CVE VULNERABILITY TITLE RISK
2023-09-05 CVE-2017-9453 Incorrect Authorization vulnerability in BMC Server Automation 8.6/8.7
BMC Server Automation before 8.9.01 patch 1 allows Process Spawner command execution because of authentication bypass.
network
low complexity
bmc CWE-863
critical
9.8
2017-05-02 CVE-2016-5063 Improper Authorization vulnerability in BMC Server Automation 8.6/8.7
The RSCD agent in BMC Server Automation before 8.6 SP1 Patch 2 and 8.7 before Patch 3 on Windows might allow remote attackers to bypass authorization checks and make an RPC call via unspecified vectors.
network
low complexity
bmc CWE-285
5.3