CVE-2011-0975 [Critical] | Memory Corruption in Performance Analysis For …

Stack-based buffer overflow in BMC PATROL Agent Service Daemon for in Performance Analysis for Servers, Performance Assurance for Servers, and Performance Assurance for Virtual Servers 7.4.00 through 7.5.10; Performance Analyzer and Performance Predictor for Servers 7.4.00 through 7.5.10; and Capacity Management Essentials 1.2.00 (7.4.15) allows remote attackers to execute arbitrary code via a crafted length value in a BGS_MULTIPLE_READS command to TCP port 6768.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-06-15	21.55%	6.83%	-14.72%
2	2026-05-06	25.99%	21.55%	-4.44%
3	2025-03-30	—	25.99%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2026-06-15

21.55%

6.83%

-14.72%

2026-05-06

25.99%

21.55%

-4.44%

2025-03-30

—

25.99%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
10.0	2.0	HIGH	`AV:N/AC:L/Au:N/C:C/I:C/A:C` Click to expand Access vector (AV:N) Can be exploited remotely over network reachability. Access complexity (AC:L) Exploitation conditions are straightforward and predictable. Authentication (AU:N) No authentication is required. Confidentiality impact (C:C) Complete confidentiality impact. Integrity impact (I:C) Complete integrity impact. Availability impact (A:C) Complete availability impact.	10.0	10.0	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

10.0

2.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C Click to expand

Access vector (AV:N): Can be exploited remotely over network reachability.
Access complexity (AC:L): Exploitation conditions are straightforward and predictable.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:C): Complete confidentiality impact.
Integrity impact (I:C): Complete integrity impact.
Availability impact (A:C): Complete availability impact.

10.0

[email protected]

Affected software / configurations for CVE-2011-0975

References for CVE-2011-0975

URL	Tags
http://osvdb.org/70788
http://secunia.com/advisories/43177	Vendor Advisory
http://securityreason.com/securityalert/8076
http://www.securityfocus.com/archive/1/516188/100/0/threaded
http://www.securityfocus.com/bid/46151
http://www.vupen.com/english/advisories/2011/0286	Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-11-039
https://exchange.xforce.ibmcloud.com/vulnerabilities/65135

URL

CVE-2011-0975

Exploit prediction scoring system (EPSS) score for CVE-2011-0975

Common vulnerability scoring system (CVSS) metrics for CVE-2011-0975

Weakness enumeration for CVE-2011-0975

Affected software / configurations for CVE-2011-0975

References for CVE-2011-0975

Vendor	Product	Version	Raw CPE
bmc	performance_analysis_for_servers	7.4.00	cpe:2.3:a:bmc:performance_analysis_for_servers:7.4.00:::::::*
bmc	performance_analysis_for_servers	7.4.10	cpe:2.3:a:bmc:performance_analysis_for_servers:7.4.10:::::::*
bmc	performance_analysis_for_servers	7.4.15	cpe:2.3:a:bmc:performance_analysis_for_servers:7.4.15:::::::*
bmc	performance_analysis_for_servers	7.5.00	cpe:2.3:a:bmc:performance_analysis_for_servers:7.5.00:::::::*
bmc	performance_analysis_for_servers	7.5.10	cpe:2.3:a:bmc:performance_analysis_for_servers:7.5.10:::::::*
bmc	performance_assurance_for_servers	7.4.00	cpe:2.3:a:bmc:performance_assurance_for_servers:7.4.00:::::::*
bmc	performance_assurance_for_servers	7.4.10	cpe:2.3:a:bmc:performance_assurance_for_servers:7.4.10:::::::*
bmc	performance_assurance_for_servers	7.4.15	cpe:2.3:a:bmc:performance_assurance_for_servers:7.4.15:::::::*
bmc	performance_assurance_for_servers	7.5.00	cpe:2.3:a:bmc:performance_assurance_for_servers:7.5.00:::::::*
bmc	performance_assurance_for_servers	7.5.10	cpe:2.3:a:bmc:performance_assurance_for_servers:7.5.10:::::::*
bmc	performance_assurance_for_virtual_servers	7.4.00	cpe:2.3:a:bmc:performance_assurance_for_virtual_servers:7.4.00:::::::*
bmc	performance_assurance_for_virtual_servers	7.4.10	cpe:2.3:a:bmc:performance_assurance_for_virtual_servers:7.4.10:::::::*
bmc	performance_assurance_for_virtual_servers	7.4.15	cpe:2.3:a:bmc:performance_assurance_for_virtual_servers:7.4.15:::::::*
bmc	performance_assurance_for_virtual_servers	7.5.00	cpe:2.3:a:bmc:performance_assurance_for_virtual_servers:7.5.00:::::::*
bmc	performance_assurance_for_virtual_servers	7.5.10	cpe:2.3:a:bmc:performance_assurance_for_virtual_servers:7.5.10:::::::*
bmc	performance_analyzer_for_servers	7.4.00	cpe:2.3:a:bmc:performance_analyzer_for_servers:7.4.00:::::::*
bmc	performance_analyzer_for_servers	7.4.10	cpe:2.3:a:bmc:performance_analyzer_for_servers:7.4.10:::::::*
bmc	performance_analyzer_for_servers	7.4.15	cpe:2.3:a:bmc:performance_analyzer_for_servers:7.4.15:::::::*
bmc	performance_analyzer_for_servers	7.5.00	cpe:2.3:a:bmc:performance_analyzer_for_servers:7.5.00:::::::*
bmc	performance_analyzer_for_servers	7.5.10	cpe:2.3:a:bmc:performance_analyzer_for_servers:7.5.10:::::::*
bmc	performance_predictor_for_servers	7.4.00	cpe:2.3:a:bmc:performance_predictor_for_servers:7.4.00:::::::*
bmc	performance_predictor_for_servers	7.4.10	cpe:2.3:a:bmc:performance_predictor_for_servers:7.4.10:::::::*
bmc	performance_predictor_for_servers	7.4.15	cpe:2.3:a:bmc:performance_predictor_for_servers:7.4.15:::::::*
bmc	performance_predictor_for_servers	7.5.00	cpe:2.3:a:bmc:performance_predictor_for_servers:7.5.00:::::::*
bmc	performance_predictor_for_servers	7.5.10	cpe:2.3:a:bmc:performance_predictor_for_servers:7.5.10:::::::*
bmc	capacity_management_essentials	1.2.00	cpe:2.3:a:bmc:capacity_management_essentials:1.2.00:::::::*