CVE-2016-4395

Опубликовано: 28 окт. 2016

Источник: nvd

CVSS3: 7.5

CVSS2: 7.8

EPSS Низкий

Описание

HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via unknown vectors, related to a "Buffer Overflow" issue.

Ссылки

http://www.securityfocus.com/bid/93961
http://www.zerodayinitiative.com/advisories/ZDI-16-587
https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05320149
Vendor Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722
https://www.tenable.com/security/research/tra-2016-32
http://www.securityfocus.com/bid/93961
http://www.zerodayinitiative.com/advisories/ZDI-16-587
https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05320149
Vendor Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722
https://www.tenable.com/security/research/tra-2016-32

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hp:system_management_homepage:*:*:*:*:*:*:*:*

Версия до 7.5.5.0 (включая)

EPSS

Процентиль: 80%

0.01457

Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-7q43-2mpm-j482