CVE-2022-35865

CRITICAL

BMC Track-It! 20.21.2.109 - Unauthenticated Remote Code Execution via HTTP Request Authorization Bypass

Title source: llm

Description

This vulnerability allows remote attackers to execute arbitrary code on affected installations of BMC Track-It! 20.21.2.109. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authorization of HTTP requests. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-16709.

References (2)

Core 2

Core References

Patch, Vendor Advisory x_refsource_misc

https://community.bmc.com/s/article/Security-vulnerabilities-patched-in-Track-It-Version-2

Third Party Advisory, VDB Entry x_refsource_misc

https://www.zerodayinitiative.com/advisories/ZDI-22-968/

Scores

CVSS v3 9.8

EPSS 0.0144

EPSS Percentile 69.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-306

Status published

Products (7)

BMC/Track-It! 20.21.2.109

bmc/track-it\! 20.19.03

bmc/track-it\! 20.20.01

bmc/track-it\! 20.20.02

bmc/track-it\! 20.20.03

bmc/track-it\! 20.21.01

bmc/track-it\! 20.21.02

Published Aug 03, 2022

Tracked Since Feb 18, 2026