HPE Intelligent Management Center TopoDebugServlet Insecure Deserialization

An insecure deserialization vulnerability has been reported in HPE Intelligent Management Center. The vulnerability is due to deserialization of untrusted data by the TopoDebugServlet while having vulnerable classes in the code path. A remote, authenticated attacker can exploit this vulnerability...

HPE Intelligent Management Center (IMC) untrustworthy data deserialization vulnerability (CNVD-2019-23766)

HPE Intelligent Management Center IMC is a comprehensive management platform built from the ground up to support the Fault, Configuration, Accounting, Performance and Security FCAPS model. A TopoDebugServlet untrusted data deserialization vulnerability exists in HPE Intelligent Management Center...

(0Day) Hewlett Packard Enterprise Intelligent Management Center TopoDebugServlet Expression Language Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw...

(0Day) Hewlett Packard Enterprise Intelligent Management Center TopoDebugServlet Expression Language Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw...

The vulnerability of the TopoDebugServlet component in the HPE Intelligent Management Center PLAT software platform allows a malicious actor to execute arbitrary code, due to a memory corruption related to unreliable data structures.

The vulnerability of the TopoDebugServlet component in the HPE Intelligent Management Center PLAT software platform is related to the restoration of unreliable data structures in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Hewlett Packard Enterprise Intelligent Management Center TopoDebugServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw...