CVE-2021-35002

Published May 7, 2024

Last updated 11 days ago

CVSS high 8.8

Overview

Description: BMC Track-It! Unrestricted File Upload Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of BMC Track-It!. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of email attachments. The issue results from the lack of proper validation of user-supplied data, which can allow the upload of arbitrary files. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-14122.
Source: zdi-disclosures@trendmicro.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 8.8
Impact score: 5.9
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 3.0

Type: Secondary
Base score: 8.8
Impact score: 5.9
Exploitability score: 2.8
Vector string: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

zdi-disclosures@trendmicro.com: CWE-434
nvd@nist.gov: CWE-434

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:bmc:track-it\\!:20.19.01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74E8F32E-A350-4EF5-ACD2-CF001101F474"
          },
          {
            "criteria": "cpe:2.3:a:bmc:track-it\\!:20.19.02:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F31ED78-C6B7-4BB4-AB79-F7AE38546BBA"
          },
          {
            "criteria": "cpe:2.3:a:bmc:track-it\\!:20.19.03:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80B5F6EB-E001-4D1F-8428-99AF9DC3D4B3"
          },
          {
            "criteria": "cpe:2.3:a:bmc:track-it\\!:20.20.01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D2C30FF-FF7C-4F8C-ACB8-A3BC3CFE1EAC"
          },
          {
            "criteria": "cpe:2.3:a:bmc:track-it\\!:20.20.02:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F8B4BD9-9197-49C7-9E1D-EEA831E0CCF5"
          },
          {
            "criteria": "cpe:2.3:a:bmc:track-it\\!:20.20.03:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFA184EF-A951-4E16-B11B-EE7A6456D974"
          },
          {
            "criteria": "cpe:2.3:a:bmc:track-it\\!:20.21.01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A0E5F78-3CA7-4E92-B714-09E2FCC51DB7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 3.0

Weaknesses

Social media

Configurations

References