Lucene search
Steven Seeley (mr_me) of Offensive SecurityZDI-17-654HistoryAug 11, 2017 - 12:00 a.m.
Hewlett Packard Enterprise Intelligent Management Center perfSelInsServer Expression Language Injection Remote Code Execution Vulnerability
2017-08-1100:00:00
Steven Seeley (mr_me) of Offensive Security
www.zerodayinitiative.com
14
EPSS
0.248
Percentile
96.7%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of the beanName parameter provided to the perfSelInsServer.gwtsvc endpoint. When parsing this parameter, the process does not properly validate a user-supplied string before using it to render a page. An attacker can leverage this vulnerability to arbitrary code under the context of SYSTEM.
Related
checkpoint_advisories
checkpoint_advisories
nvd
nvd
CVE-2017-12490
2018-02-15 22:29:01
prion
prion
Remote code execution
2018-02-15 22:29:00
cvelist
cvelist
CVE-2017-12490
2018-02-15 22:00:00
cve
cve
CVE-2017-12490
2018-02-15 22:29:01
nessus
nessus
openvas
openvas
HP Intelligent Management Center (iMC) Multiple RCE Vulnerabilities
2017-08-17 00:00:00