CVE-2019-11216
BMC Smart Reporting 7.3 20180418 XML Injection
Severity Score
6.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
2
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
BMC Smart Reporting 7.3 20180418 allows authenticated XXE within the import functionality. One can import a malicious XML file and perform XXE attacks to download local files from the server, or do DoS attacks with XML expansion attacks. XXE with direct response and XXE OOB are allowed.
BMC Smart Reporting versión 7.3 20180418, permite un ataque de tipo XXE autenticado dentro de la funcionalidad import. Se puede importar un archivo XML malicioso y realizar ataques de tipo XXE para desencadenar archivos locales del servidor, o hacer ataques de tipo DoS con ataques de expansión XML. XXE con respuesta directa y XXE OOB están permitidos.
BMC Smart Reporting version 7.3 20180418 suffers from an XML external entity injection vulnerability.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2019-04-12 CVE Reserved
- 2019-12-04 CVE Published
- 2024-07-31 EPSS Updated
- 2024-08-04 CVE Updated
- 2024-08-04 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-434: Unrestricted Upload of File with Dangerous Type
- CWE-611: Improper Restriction of XML External Entity Reference
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://docs.bmc.com/docs/itsm90/export-and-import-repository-509983929.html | Product |
| URL | Date | SRC |
|---|---|---|
| http://packetstormsecurity.com/files/155552/BMC-Smart-Reporting-7.3-20180418-XML-Injection.html | 2024-08-04 | |
| http://seclists.org/fulldisclosure/2019/Dec/7 | 2024-08-04 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Bmc Search vendor "Bmc" | Remedy Smart Reporting Search vendor "Bmc" for product "Remedy Smart Reporting" | >= 9.1.03 <= 9.1.03.001 Search vendor "Bmc" for product "Remedy Smart Reporting" and version " >= 9.1.03 <= 9.1.03.001" | - |
Affected
| ||||||
| Bmc Search vendor "Bmc" | Remedy Smart Reporting Search vendor "Bmc" for product "Remedy Smart Reporting" | >= 9.1.04 <= 9.1.04.002 Search vendor "Bmc" for product "Remedy Smart Reporting" and version " >= 9.1.04 <= 9.1.04.002" | - |
Affected
| ||||||
| Bmc Search vendor "Bmc" | Remedy Smart Reporting Search vendor "Bmc" for product "Remedy Smart Reporting" | >= 18.05 <= 18.05.05 Search vendor "Bmc" for product "Remedy Smart Reporting" and version " >= 18.05 <= 18.05.05" | - |
Affected
| ||||||
| Bmc Search vendor "Bmc" | Remedy Smart Reporting Search vendor "Bmc" for product "Remedy Smart Reporting" | >= 19.02 <= 19.02.01 Search vendor "Bmc" for product "Remedy Smart Reporting" and version " >= 19.02 <= 19.02.01" | - |
Affected
| ||||||