CVE-2017-5799

8.8HIGH

Key Information:

Vendor: HP
Status: Opencall Media Platform (ocmp)
Vendor: CVE Published:; 15 February 2018

Summary

A Remote Code Execution vulnerability in HPE OpenCall Media Platform (OCMP) was found. The vulnerability impacts OCMP versions prior to 3.4.2 RP201 (for OCMP 3.x), all versions prior to 4.4.7 RP702 (for OCMP 4.x).

Affected Version(s)

OpenCall Media Platform (OCMP) prior to 3.4.2 RP201 (for OCMP 3.x), all versions prior to 4.4.7 RP702 (for OCMP 4.x)

References

https://www.exploit-db.com/exploits/41927/

exploitx_refsource_EXPLOIT-DB

http://www.securityfocus.com/bid/98013

vdb-entryx_refsource_BID

https://support.hpe.com/hpsc/doc/public/display?docId=emr...

x_refsource_CONFIRM

EPSS Score

5% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 15, 2018
Vulnerability Reserved
Feb 1, 2017