This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.
The RSCD agent running on the remote host is affected by a remote
command execution vulnerability.
The BMC Server Automation RSCD agent running on the remote host is
configured in such a manner as to publicly expose an API that can be
used for unrestricted command execution. An unauthenticated, remote
attacker can exploit this, via the NSH protocol, to execute arbitrary
See also :
Update the exports file to restrict access to the interface.
Risk factor :
Critical / CVSS Base Score : 10.0
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now