Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-18228

Remedy Mid Tier in BMC Remedy AR System 9.1 allows XSS via the ATTKey parameter in an arsys/servlet/AttachServlet request.

2018-03-12T23:29:00.210

2024-11-21T03:19:37.393

Modified

CVSSv3.0: 5.4 (MEDIUM)

AV:N/AC:M/Au:S/C:N/I:P/A:N

6.8

2.9

Type	Vendor	Product	Version/Range	Vulnerable?
Application	bmc	remedy_action_request_system	≤ 9.1	Yes