CVE-2025-71260
Vulnerability data via CVEDB (Shodan)
BMC FootPrints ITSM versions 20.20.02 through 20.24.01.001 contain a deserialization of untrusted data vulnerability in the ASP.NET servlet's VIEWSTATE handling that allows authenticated attackers to execute arbitrary code. Attackers can supply crafted serialized objects to the VIEWSTATE parameter to achieve remote code execution and fully compromise the application. The following hotfixes remediate the vulnerability: 20.20.02, 20.20.03.002, 20.21.01.001, 20.21.02.002, 20.22.01, 20.22.01.001, 20.23.01, 20.23.01.002, and 20.24.01.
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
vuln:CVE-2025-71260product:"Bmc Footprints Itsm"http.html:"Footprints Itsm"More intel sources (5)
vuln:CVE-2025-71260vulnerabilities.cve_id: CVE-2025-71260CVE-2025-71260CVE-2025-71260"CVE-2025-71260" exploit -site:nvd.nist.gov