CNNVD-202509-2512 Information

CNNVD ID

CNNVD-202509-2512

Related CVE

CVE-2025-55115

• CNNVD Published: 2025-09-16

Description (Chinese)

BMC Control-M是BMC公司的一个应用程序。简化了本地或作为服务的应用程序和数据工作流编排。 BMC Control-M/Agent 9.0.18版本至9.0.20版本存在安全漏洞，该漏洞源于路径遍历问题，可能导致本地权限提升。

Description (English)

BMC Control-M is an application of BMC. Simplified local or service-based applications and data workflow. The BMC Control-M/Agent versions 9.0.18 to 9.0.20 contain a security loophole, which stems from the problem of routing, which may lead to an increase in local privileges.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

BMC

Published

2025-09-16

Last Modified

2026-02-24

References

https://bmcapps.my.site.com/casemgmt/sc_KnowledgeArticle?sfdcid=000441969 https://bmcapps.my.site.com/casemgmt/sc_KnowledgeArticle?sfdcid=000442099 https://access.redhat.com/security/cve/cve-2025-55115

Patch

https://www.bmc.com/available/edownloads.html