Remote Authentication Vulnerability in HPE Systems Insight Manager
CVE-2016-2022

8.1HIGH

Key Information:

Vendor

HP
Status
Matrix Operating Environment
Vendor
CVE Published:
8 June 2016

What is CVE-2016-2022?

HPE Systems Insight Manager versions before 7.5.1 are susceptible to a remote authentication vulnerability that enables authenticated users to gain unauthorized access to sensitive information or alter data through unspecified methods. This security weakness poses significant risks to data integrity and confidentiality, necessitating prompt attention and remediation.

References

https://h20566.www2.hpe.com/hpsc/doc/public/display?docId...
x_refsource_CONFIRM
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/do...
x_refsource_CONFIRM
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/do...
x_refsource_CONFIRM

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.