CVE-2026-10538 | BMC Control-M/Enterprise Manager/Server up to 9.0.20 deserialization

SecurityVulns

A vulnerability categorized as critical has been discovered in BMC Control-M, Enterprise Manager and Server up to 9.0.20. This affects an unknown function. Executing a manipulation can lead to deserialization.

This vulnerability is registered as CVE-2026-10538. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More