HP Operations Orchestration 10.x < 10.51 Java Object Deserialization RCE

The version of HP Operations Orchestration installed on the remote host is 10.x prior to 10.51. It is, therefore, affected by a remote code execution vulnerability due to unsafe deserialize calls of unauthenticated Java objects to the Apache Commons Collections ACC library. An unauthenticated,...

CVE-2016-1997

CVE-2016-1997 affects HPE Operations Orchestration 10.x before 10.51 and related content before 1.7.0, due to unsafe deserialization of crafted Java objects via the Apache Commons Collections library. This leads to remote code execution by an unauthenticated attacker. Affected component is the Or...