Authenticated Code Execution in BMC Remedy 9.1SP3 via BIRT Templates

Authenticated Code Execution in BMC Remedy 9.1SP3 via BIRT Templates

CVE-2017-17677 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

BMC Remedy 9.1SP3 is affected by authenticated code execution. Authenticated users that have the right to create reports can use BIRT templates to run code.

Learn more about our User Device Pen Test.