5 matches found
HPE Intelligent Management Center dbman RestoreZipFile Command Injection - Ver2 (CVE-2017-5821)
A command injection vulnerability exists in the dbman component of HPE Intelligent Management Center. The vulnerability is due to missing validation of user-provided parameters when handling RestoreZipFile commands. A remote, unauthenticated attacker can exploit the vulnerability by sending a...
CVE-2017-5821
A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version 7.3 E0504P04 was found...
CVE-2017-5821
CVE-2017-5821 is a remote, unauthenticated command-injection in HPE Intelligent Management Center (iMC) PLAT, dbman service, allowing arbitrary OS command execution via opcode 10006. Affected product/version: iMC PLAT before 7.3 E0504P04. Public details come from ZDI-17-339 and CP AI advisories; ...
HPE Intelligent Management Center dbman RestoreZipFile Command Injection (CVE-2017-5821)
A command injection vulnerability exists in the dbman component of HPE Intelligent Management Center. The vulnerability is due to missing validation of user-provided parameters when handling RestoreZipFile commands. A remote, unauthenticated attacker can exploit the vulnerability by sending a...
H3C / HPE Intelligent Management Center PLAT < 7.3 E0504P04 Multiple Vulnerabilities
The version of HPE Intelligent Management Center iMC PLAT installed on the Windows host is prior to 7.3 E0504P04. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists that allows an unauthenticated, remote attacker to execute arbitrary code. CVE-2017-5815 - A...