Local Access Vulnerability in HPE System Management Homepage
CVE-2016-1996

7.7HIGH

Key Information:

Vendor: HP
Status: System Management Homepage
Vendor: CVE Published:; 18 March 2016

What is CVE-2016-1996?

The HPE System Management Homepage prior to version 7.5.4 contains a vulnerability that allows local users to access sensitive information or alter data through various unspecified methods. This flaw underscores the importance of securing local access points to prevent unauthorized data manipulation and protect sensitive information from unwanted exposure.

References

http://www.securitytracker.com/id/1035325

vdb-entryx_refsource_SECTRACK

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/do...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 18, 2016
Vulnerability Reserved
Jan 22, 2016