Remote Code Execution Vulnerability in HP KeyView Products
CVE-2015-5422

Currently unrated

Key Information:

Vendor: HP
Status: Keyview
Vendor: CVE Published:; 24 August 2015

Summary

HP KeyView versions prior to 10.23.0.1 and 10.24.x before 10.24.0.1 contain an unspecified vulnerability that permits remote attackers to execute arbitrary code, potentially compromising system integrity and confidentiality. The vulnerability affects the software's ability to securely process harmful input, leading to dire security risks for organizations utilizing these versions. Immediate updates are recommended to safeguard sensitive information.

References

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/do...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/76457

vdb-entryx_refsource_BID

http://www.zerodayinitiative.com/advisories/ZDI-15-403

x_refsource_MISC

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 24, 2015
Vulnerability Reserved
Jul 7, 2015