Vulnerability in N/a

CVE-2026-23780

An issue was discovered in BMC Control-M/MFT 9.0.20 through 9.0.22. A SQL injection vulnerability in the MFT API's debug interface allows an authenticated attacker to inject malicious queries due to improper input validation and unsafe dyn…

EPSS: 0.002 (44.0th percentile) — read the EPSS interpretation.

Affected products

  • N/a — versions n/a

References