CVE-2025-55118

Summary

Memory corruptions can be remotely triggered in the Control-M/Agent when SSL/TLS communication is configured.

The issue occurs in the following cases:

  • Control-M/Agent 9.0.20: SSL/TLS configuration is set to the non-default setting "use_openssl=n";
  • Control-M/Agent 9.0.21 and 9.0.22: Agent router configuration uses the non-default settings "JAVA_AR=N" and "use_openssl=n"

Affected Software

VendorProductVersion RangeStatus
BMCControl-M/Agent9.0.22.000affected
BMCControl-M/Agent9.0.21affected
BMCControl-M/Agent9.0.20affected
BMCControl-M/Agent9.0.19affected
BMCControl-M/Agent9.0.18affected

Weaknesses

  • CWE-122: CWE-122 Heap-based Buffer Overflow
  • CWE-125: CWE-125 Out-of-bounds Read
  • CWE-787: CWE-787 Out-of-bounds Write
  • CWE-191: CWE-191 Integer Underflow (Wrap or Wraparound)
  • CWE-665: CWE-665 Improper Initialization
  • CWE-835: CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')
  • CWE-415: CWE-415 Double Free
  • CWE-416: CWE-416 Use After Free

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References