2 matches found
CVE-2020-7168
A selectusergroup expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center iMC versions: Prior to iMC PLAT 7.3 E0705P07...
CVE-2020-7168
CVE-2020-7168 is a remote code execution vulnerability in Hewlett Packard Enterprise Intelligent Management Center (iMC) before PLAT 7.3 (E0705P07). The issue arises from a flaw in the selectUserGroup.xhtml endpoint, where the beanName parameter is improperly validated, allowing an attacker to in...