Buffer Overflow Vulnerability in HPE System Management Homepage
CVE-2016-4396

7.5HIGH

Key Information:

Vendor
HP
Status
HP System Management Homepage Before V7.6
Vendor
CVE Published:
28 October 2016

Summary

The HPE System Management Homepage versions prior to 7.6 is vulnerable to a buffer overflow issue that allows remote attackers to exploit the application via unknown vectors, potentially impacting the integrity and availability of the system. This vulnerability can lead to unexpected behaviors and may allow unauthorized access to sensitive information or system resources. Organizations using affected versions should consider applying necessary updates and patches to mitigate the risks associated with this vulnerability.

Affected Version(s)

HPE System Management Homepage before v7.6 HPE System Management Homepage before v7.6

References

http://www.securityfocus.com/bid/93961
vdb-entryx_refsource_BID
https://www.tenable.com/security/research/tra-2016-32
x_refsource_MISC
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/do...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.