2 matches found
CVE-2017-5790
CVE-2017-5790 is a remote deserialization vulnerability in HPE Intelligent Management Center (IMC) PLAT 7.2 E0403P06 . The flaw exists in the accessMgrServlet and allows unauthenticated remote code execution by deserializing untrusted data. Multiple sources (ZDI-17-166, CNVD-2017-02625, NVD entry...
HPE Intelligent Management Center accessMgrServlet Insecure Deserialization (CVE-2017-5790)
An insecure deserialization vulnerability has been reported in HPE Intelligent Management Center. The vulnerability is due to deserialization of untrusted data by the accessMgrServlet while having vulnerable classes in the code path. A remote, unauthenticated attacker can exploit this vulnerabili...