Vulnerability Database

Published: Dec 21, 2016
Updated: Nov 9, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2016-2349" target="_blank" rel="noopener"> CVE-2016-2349
Severity: Medium
Exploit:

309,469

Total vulnerabilities in the database

Remedy AR System Server in BMC Remedy 8.1 SP 2, 9.0, 9.0 SP 1, and 9.1 allows attackers to reset arbitrary passwords via a blank previous password.

CVSS v2:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
bmc / remedy_action_request_system	9.0	9.0.x
bmc / remedy_action_request_system	9.0-sp1	9.0-sp1.x
bmc / remedy_action_request_system	8.1-sp2	8.1-sp2.x
bmc / remedy_action_request_system	9.1	9.1.x

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.