CVE-2020-35593 : Security Advisory and Response

BMC PATROL Agent through 20.08.00 allows local privilege escalation via vectors involving pconfig +RESTART -host.

Understanding CVE-2020-35593

This CVE identifies a vulnerability in BMC PATROL Agent that can be exploited for local privilege escalation.

What is CVE-2020-35593?

The CVE-2020-35593 vulnerability in BMC PATROL Agent allows attackers to escalate their privileges locally through specific vectors related to pconfig +RESTART -host.

The Impact of CVE-2020-35593

This vulnerability can lead to unauthorized users gaining elevated privileges on the affected system, potentially resulting in further compromise or unauthorized access.

Technical Details of CVE-2020-35593

This section provides more technical insights into the CVE-2020-35593 vulnerability.

Vulnerability Description

The vulnerability in BMC PATROL Agent up to version 20.08.00 enables local privilege escalation through the manipulation of certain vectors, specifically involving pconfig +RESTART -host.

Affected Systems and Versions

Vendor: n/a
Product: n/a
Affected Versions: All versions up to 20.08.00

Exploitation Mechanism

The exploitation of this vulnerability involves utilizing the identified vectors within the BMC PATROL Agent to escalate privileges locally on the system.

Mitigation and Prevention

To address CVE-2020-35593, follow these mitigation and prevention strategies.

Immediate Steps to Take

Implement access controls and least privilege principles to limit unauthorized access.
Monitor and restrict the execution of potentially malicious commands.
Apply the latest security patches and updates from BMC.

Long-Term Security Practices

Conduct regular security assessments and audits to identify vulnerabilities proactively.
Educate users on secure practices and the importance of privilege management.

Patching and Updates

Ensure timely installation of patches and updates provided by BMC to address the CVE-2020-35593 vulnerability.