CVE-2017-14353

8.8HIGH

Key Information:

Vendor: HP
Status: Ucmdb Foundation Software
Vendor: CVE Published:; 5 October 2017

Summary

A remote code execution vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33, could be remotely exploited to allow code execution.

References

http://www.securityfocus.com/bid/101251

vdb-entryx_refsource_BID

https://www.tenable.com/security/research/tra-2017-32

x_refsource_MISC

https://softwaresupport.hpe.com/km/KM02977984

x_refsource_CONFIRM

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Oct 5, 2017
Vulnerability Reserved
Sep 12, 2017