CVE-2019-8352

By default, BMC PATROL Agent through 11.3.01 uses a static encryption key for encrypting/decrypting user credentials sent over the network to managed PATROL Agent services. If an attacker were able to capture this network traffic, they could decrypt these credentials and use them to execute code or escalate privileges on the network.
References
Link Resource
https://www.securifera.com/advisories/CVE-2019-8352/ Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:bmc:patrol_agent:*:*:*:*:*:*:*:*

Information

Published : 2019-05-20 07:29

Updated : 2022-03-30 06:58


NVD link : CVE-2019-8352

Mitre link : CVE-2019-8352

Products Affected
No products.
CWE