CVE-2023-34257

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published May 31, 2023

Updated: Jan 10, 2025

Summary

CVE-2023-34257: A vulnerability was identified in BMC Patrol versions prior to 23.1.0. This issue allows for unauthenticated remote modification of the agent's configuration. Some specific SNMP-related configuration fields can result in code execution upon agent restart. Despite the vendor's stance that authentication is an optional feature, this vulnerability may still pose a significant risk to affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

BMC Software PATROL Agent

Affected Vendors

Boston Medical Center

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rdJRJO
https://www.cve.org/CVERecord?id=CVE-2023-34257
https://nvd.nist.gov/vuln/detail/CVE-2023-34257

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners