Lucene search
+L

59 matches found

bdu_fstec
bdu_fstec
added 2018/03/28 12:0 a.m.10 views

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform arises from insufficient validation of input data, allowing a perpetrator to execute arbitrary code.

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS8.2AI score0.10427EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2018/03/28 12:0 a.m.8 views

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform arises from insufficient validation of input data, allowing a perpetrator to execute arbitrary code.

The vulnerability of the HP Intelligent Management Center software exists due to insufficient verification of the string passed by the user before it is used to execute system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS5.9AI score0.18518EPSS
Exploits0References4Affected Software1
bdu_fstec
bdu_fstec
added 2018/03/16 12:0 a.m.9 views

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform allows a perpetrator to execute arbitrary code.

The vulnerability of the dbman service in the HPE Intelligent Management Center PLAT software platform is related to the use of an uninitialized pointer. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code in the SYSTEM context, using a specially crafted message...

10CVSS6AI score0.31112EPSS
Exploits0References4
bdu_fstec
bdu_fstec
added 2018/03/01 12:0 a.m.7 views

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform allows a perpetrator to execute arbitrary code.

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.18518EPSS
Exploits0References4Affected Software1
bdu_fstec
bdu_fstec
added 2018/03/01 12:0 a.m.6 views

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform allows a perpetrator to execute arbitrary code.

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.18518EPSS
Exploits0References4Affected Software1
bdu_fstec
bdu_fstec
added 2018/03/01 12:0 a.m.6 views

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform allows a perpetrator to execute arbitrary code.

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.16844EPSS
Exploits0References4Affected Software1
bdu_fstec
bdu_fstec
added 2018/03/01 12:0 a.m.7 views

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform allows a perpetrator to execute arbitrary code.

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.82877EPSS
Exploits8References8Affected Software1
bdu_fstec
bdu_fstec
added 2018/03/01 12:0 a.m.6 views

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform allows a perpetrator to execute arbitrary code.

The vulnerability of the dbman service of the HPE Intelligent Management Center PLAT software platform is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.18518EPSS
Exploits0References4Affected Software1
cnvd
cnvd
added 2018/01/31 12:0 a.m.5 views

HPE Intelligent Management Center PLAT Remote Code Execution Vulnerability (CNVD-2018-03956)

HPE Intelligent Management Center iMC PLAT for Windows is a suite of intelligent management center solutions for networks based on the Windows platform from Hewlett Packard Enterprise HPE. The solution provides network-wide visibility and enables comprehensive management of resources, services an...

10CVSS8.6AI score0.08867EPSS
Exploits0References1
zdt
zdt
added 2018/01/10 12:0 a.m.81 views

HPE iMC dbman RestartDB Unauthenticated Remote Command Execution Exploit

This Metasploit module exploits a remote command execution vulnerability in Hewlett Packard Enterprise Intelligent Management Center before version 7.3 E0504P04. The dbman service allows unauthenticated remote users to restart a user-specified database instance OpCode 10008, however the instance ...

9.4AI score0.86466EPSS
Exploits13
exploitdb
exploitdb
added 2017/11/29 12:0 a.m.56 views

HP iMC Plat 7.2 - Remote Code Execution (2)

!/opt/local/bin/python2.7 Exploit Title: HP iMC Plat 7.2 dbman Opcode 10008 Command Injection RCE Date: 11-29-2017 Exploit Author: Chris Lyne @lynerc Vendor Homepage: www.hpe.com Software Link:...

10CVSS7.6AI score0.86466EPSS
Exploits13
cnvd
cnvd
added 2017/10/09 12:0 a.m.22 views

HP Intelligent Management Center Arbitrary File Deletion Vulnerability (CNVD-2017-33293)

HP Intelligent Management Center IMC is a comprehensive management platform built from the ground up to support the Fault, Configuration, Accounting, Performance and Security FCAPS model. An arbitrary file deletion vulnerability exists in HPE Intelligent Management Center, where a remote...

10CVSS9.4AI score0.31112EPSS
Exploits0References1
checkpoint_advisories
checkpoint_advisories
added 2017/10/09 12:0 a.m.16 views

HPE Intelligent Management Center dbman Stack Buffer Overflow (CVE-2017-8956)

A stack-based buffer overflow exists in the dbman component of HPE Intelligent Management Center. The vulnerability is due to lack of proper validation of the length of user-supplied data prior to copying it to a fixedlength stack-based buffer. A remote, unauthenticated attacker can exploit this...

10CVSS9.2AI score0.10427EPSS
Exploits0
zdi
zdi
added 2017/10/03 12:0 a.m.56 views

Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10012 Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within dbman service, which listens on TCP port 2810...

10CVSS2.1AI score0.31112EPSS
Exploits0References1
checkpoint_advisories
checkpoint_advisories
added 2017/08/15 12:0 a.m.51 views

HPE Intelligent Management Center dbman RestoreDBase Command Injection (CVE-2017-5817; CVE-2017-5819)

A command injection vulnerability exists in the dbman component of HPE Intelligent Management Center. The vulnerability exists due to missing validation of user-provided parameters when handling RestoreDBase commands for MSSQL and MySQL databases. A remote, unauthenticated attacker can exploit th...

10CVSS2.7AI score0.82877EPSS
Exploits8
zdi
zdi
added 2017/08/07 12:0 a.m.21 views

Hewlett Packard Enterprise Intelligent Management Center dbman Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dbman service, which listens by default o...

10CVSS9.4AI score0.10427EPSS
Exploits0References1
zdi
zdi
added 2017/08/07 12:0 a.m.34 views

Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10006 Arbitrary File Deletion Denial of Service Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within dbman service, which listens by default on TC...

7.8CVSS7.5AI score0.11979EPSS
Exploits0References1
zdi
zdi
added 2017/08/07 12:0 a.m.31 views

Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10005 Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within dbman service, which listens by default on TC...

10CVSS9.4AI score0.18518EPSS
Exploits0References1
checkpoint_advisories
checkpoint_advisories
added 2017/07/09 12:0 a.m.23 views

HPE Intelligent Management Center dbman BackupZipFile Command Injection (CVE-2017-5820)

A command injection vulnerability exist in the dbman component of HPE Intelligent Management Center. The vulnerability is due to missing validation of user-provided parameters when handling BackupZipFile commands. A remote, unauthenticated attacker can exploit the vulnerability by sending a...

10CVSS9.4AI score0.18518EPSS
Exploits0
checkpoint_advisories
checkpoint_advisories
added 2017/06/28 12:0 a.m.26 views

HPE Intelligent Management Center dbman RestoreZipFile Command Injection (CVE-2017-5821)

A command injection vulnerability exists in the dbman component of HPE Intelligent Management Center. The vulnerability is due to missing validation of user-provided parameters when handling RestoreZipFile commands. A remote, unauthenticated attacker can exploit the vulnerability by sending a...

10CVSS9.4AI score0.16844EPSS
Exploits0
Rows per page
Query Builder