Remedy Smart Reporting
Approved changes feed: RSS · Atom
cpe:2.3:a:bmc:remedy_smart_reporting:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Bmc (41db0501-28a3-55f2-9e02-2ebb9bfb3ab9) |
|---|---|
| Product | Remedy Smart Reporting (c6352192-901b-5a0a-b5ee-ab3bb706b031) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-11216 |
vulnerable | 2026-06-03 14:39:32.491920 |
Details available
BMC Smart Reporting 7.3 20180418 allows authenticated XXE within the import functionality. One can import a malicious XML file and perform XXE attacks to download local files from the server, or do DoS attacks with XML expansion attacks. XXE with direct response and XXE OOB are allowed.
Published: 2019-12-04T19:31:55.000Z
Updated: 2024-08-04T22:48:09.002Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.