Filtered by vendor Bmc
Subscriptions
Filtered by product Control-m/server
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-10538 | 1 Bmc | 2 Control-m/enterprise Manager, Control-m/server | 2026-07-01 | 8 High |
| Messaging consumer functionality allows deserialization of user-controlled data without sufficient restriction of allowed object types in the out of support Control-M/Server and Control-M/Enterprise Manager versions 9.0.20.x and potentially earlier. This issue may allow an authenticated attacker to trigger unintended server-side behavior through crafted serialized content. | ||||
Page 1 of 1.