Remote Code Execution Vulnerability in HP KeyView Filter SDK
CVE-2016-4404

9.8CRITICAL

Key Information:

Vendor
HP
Status
HP Keyview
Vendor
CVE Published:
6 August 2018

Summary

A security issue has been detected in the Filter SDK component of HP KeyView versions prior to 11.2. This vulnerability allows potential remote attackers to execute arbitrary code through a flawed memory allocation process. Exploiting this flaw could lead to severe consequences for impacted systems, making it essential for users and administrators to apply the latest security patches and updates to mitigate risks.

Affected Version(s)

HP Keyview earlier than v11.2

References

https://support.hpe.com/hpsc/doc/public/display?docLocale...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/94184
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1037235
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.