Remote Code Execution Flaw in HP Onboard Administrator
CVE-2012-0129

Currently unrated

Key Information:

Vendor: HP
Status: Onboard Administrator
Vendor: CVE Published:; 5 April 2012

Summary

The vulnerability in HP Onboard Administrator (OA) prior to version 3.50 allows attackers to bypass access restrictions, potentially enabling the execution of arbitrary code. This flaw can be exploited via unspecified vectors, leading to unauthorized actions within the environment it protects. Organizations using affected versions should prioritize updates to mitigate risks associated with this vulnerability.

References

http://www.securityfocus.com/archive/1/522176

vendor-advisoryx_refsource_HP

http://www.securitytracker.com/id?1026889

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/52862

vdb-entryx_refsource_BID

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 5, 2012
Vulnerability Reserved
Dec 13, 2011