Browse all 4 CVE security advisories affecting BMC Software, Inc.. AI-powered Chinese analysis, POCs, and references for each vulnerability.
BMC Software, Inc. provides enterprise software solutions for IT management, automation, and cloud operations, with core use cases including service desk, automation, and mainframe management. Historically, their products have faced vulnerabilities such as remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and access controls. While no major public security incidents have been widely reported, the company maintains a moderate CVE count, reflecting typical challenges in complex enterprise software. BMC's security posture emphasizes regular patching and vulnerability management to address these risks in their extensive product portfolio.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-71260 | BMC FootPrints ITSM 20.20.02 <= 20.24.01.001 VIEWSTATE Deserialization RCE — FootPrintsCWE-502 | 8.8 | High | 2026-03-19 |
| CVE-2025-71259 | BMC FootPrints ITSM 20.20.02 <= 20.24.01.001 Blind SSRF in externalfeed/RSS — FootPrintsCWE-918 | 4.3 | Medium | 2026-03-19 |
| CVE-2025-71258 | BMC FootPrints ITSM 20.20.02 <= 20.24.01.001 Blind SSRF in searchWeb — FootPrintsCWE-918 | 4.3 | Medium | 2026-03-19 |
| CVE-2025-71257 | BMC FootPrints ITSM 20.20.02 <= 20.24.01.001 Authentication Bypass — FootPrintsCWE-306 | 7.3 | High | 2026-03-19 |
This page lists every published CVE security advisory associated with BMC Software, Inc.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.