CVE-2017-12547

5.6MEDIUM

Key Information:

Vendor: HP
Status: System Management Homepage For Windows And Linux
Vendor: CVE Published:; 15 February 2018

Summary

A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.

Affected Version(s)

System Management Homepage for Windows and Linux prior to 7.6.1

References

http://www.securitytracker.com/id/1039437

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/101029

vdb-entryx_refsource_BID

https://support.hpe.com/hpsc/doc/public/display?docId=emr...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 15, 2018
Vulnerability Reserved
Aug 5, 2017

.