CVE-2023-34257

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-34257
An issue was discovered in BMC Patrol through 23.1.00. The agent's configuration can be remotely modified (and, by default, authentication is not required). Some configuration fields related to SNMP (e.g., masterAgentName or masterAgentStartLine) result in code execution when the agent is restarted. NOTE: the vendor's perspective is "These are not vulnerabilities for us as we have provided the option to implement the authentication."

9.8 /10

CVSS v3.0 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.errno.fr/PatrolAdvisory.html#remote-code-excution-using-patrols-pconfig Exploit Third Party Advisory
https://www.errno.fr/PatrolAdvisory.html#remote-code-excution-using-patrols-pconfig Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:bmc:patrol_agent:*:*:*:*:*:*:*:*
History

10 Jan 2025, 15:15

Type Values Removed Values Added
References (MISC) https://www.errno.fr/PatrolAdvisory.html#remote-code-excution-using-patrols-pconfig - Exploit, Third Party Advisory () https://www.errno.fr/PatrolAdvisory.html#remote-code-excution-using-patrols-pconfig - Exploit, Third Party Advisory

07 Nov 2023, 04:15

Type Values Removed Values Added
Summary ** DISPUTED ** An issue was discovered in BMC Patrol through 23.1.00. The agent's configuration can be remotely modified (and, by default, authentication is not required). Some configuration fields related to SNMP (e.g., masterAgentName or masterAgentStartLine) result in code execution when the agent is restarted. NOTE: the vendor's perspective is "These are not vulnerabilities for us as we have provided the option to implement the authentication." An issue was discovered in BMC Patrol through 23.1.00. The agent's configuration can be remotely modified (and, by default, authentication is not required). Some configuration fields related to SNMP (e.g., masterAgentName or masterAgentStartLine) result in code execution when the agent is restarted. NOTE: the vendor's perspective is "These are not vulnerabilities for us as we have provided the option to implement the authentication."
First Time Bmc patrol Agent
CPE cpe:2.3:a:bmc:patrol:*:*:*:*:*:*:*:* cpe:2.3:a:bmc:patrol_agent:*:*:*:*:*:*:*:*

08 Jun 2023, 13:42

Type Values Removed Values Added
CWE NVD-CWE-noinfo
First Time Bmc
Bmc patrol
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 9.8
CPE cpe:2.3:a:bmc:patrol:*:*:*:*:*:*:*:*
References (MISC) https://www.errno.fr/PatrolAdvisory.html#remote-code-excution-using-patrols-pconfig - (MISC) https://www.errno.fr/PatrolAdvisory.html#remote-code-excution-using-patrols-pconfig - Exploit, Third Party Advisory

31 May 2023, 20:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-05-31 20:15

Updated : 2025-01-10 15:15

NVD link : CVE-2023-34257

Mitre link : CVE-2023-34257

JSON object : View

Products Affected

bmc

  • patrol_agent
CWE
NVD-CWE-noinfo