3 matches found
CVE-2017-5794
HPE Intelligent Management Center (IMC) PLAT 7.2 E0403P06: FileUploadServlet is vulnerable to directory traversal due to improper input validation in multipart form-data requests, enabling remote code execution with SYSTEM privileges (authentication may be bypassed).
HPE Intelligent Management Center FileUploadServlet Directory Traversal (CVE-2017-5794)
A directory traversal vulnerability exist in HPE Intelligent Management Center. The vulnerability is due to a lack of proper input sanitization on multipart form-data requests in FileUploadServlet. A remote attacker can exploit this vulnerability by sending a maliciously crafted HTTP request...
HPE Intelligent Management Center 7.2 E0403P06 Multiple Vulnerabilities
The version of HPE Intelligent Management Center IMC running on the remote host is version 7.2 E0403P06. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in UrlAccessController when handling URIs with the doFilter method. A remote attacker can exploit this, via a specially...