Vulnerability in N/a

CVE-2026-23782

An issue was discovered in BMC Control-M/MFT 9.0.20 through 9.0.22. An API management endpoint allows unauthenticated users to obtain both an API identifier and its corresponding secret value. With these exposed secrets, an attacker could…

EPSS: 0.001 (26.8th percentile) — read the EPSS interpretation.

Affected products

  • N/a — versions n/a

References