Remote Denial of Service Vulnerability in HPE System Management Homepage
CVE-2017-12545

7.5HIGH

Key Information:

Vendor
HP
Status
System Management Homepage For Windows And Linux
Vendor
CVE Published:
15 February 2018

Summary

A vulnerability exists in HPE System Management Homepage for Windows and Linux versions prior to 7.6.1 which allows an attacker to exploit it remotely. This flaw can lead to a denial of service scenario where legitimate users may be unable to access the services provided by the homepage. Potential attackers can leverage this vulnerability to disrupt service availability, impacting operational efficiency and potentially affecting critical infrastructure management.

Affected Version(s)

System Management Homepage for Windows and Linux prior to 7.6.1

References

https://www.tenable.com/security/research/tra-2017-30
x_refsource_MISC
http://www.securitytracker.com/id/1039437
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/101029
vdb-entryx_refsource_BID

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.