Bmc: >> Remedy Mid-Tier >> 7.6.04 Security Vulnerabilities
An issue was discovered in BMC Remedy Mid Tier 7.6.04. The web application allows stored HTML Injection by authenticated remote attackers.
CVSS Score
4.2
EPSS Score
0.0
Published
2025-03-12
**UNSUPPORTED WHEN ASSIGNED** An issue was discovered in BMC Remedy Mid Tier 7.6.04. An unauthenticated remote attacker is able to access any user account without using any password. NOTE: This vulnerability only affects products that are no longer supported by the maintainer and the impacted version for this vulnerability is 7.6.04 only.
CVSS Score
9.8
EPSS Score
0.014
Published
2024-09-18