Bmc: >> Remedy Action Request System >> 8.1.00.001 Security Vulnerabilities
Remedy Mid Tier in BMC Remedy AR System 9.1 allows XSS via the ATTKey parameter in an arsys/servlet/AttachServlet request.
CVSS Score
5.4
EPSS Score
0.003
Published
2018-03-12
BMC Remedy AR System before 9.1 SP3, when Remedy AR Authentication is enabled, allows attackers to obtain administrative access.
CVSS Score
8.1
EPSS Score
0.004
Published
2018-03-10