Remote Directory Traversal Vulnerability in HPE Intelligent Management Center Platform
CVE-2018-7092

7.5HIGH

Key Information:

Vendor: HP
Status: HP Intelligent Management Center Platform (imc Plat)
Vendor: CVE Published:; 6 August 2018

Summary

A potential security flaw has been identified in HPE Intelligent Management Center Platform 7.3 E0506P09, which may be remotely exploited to execute directory traversal attacks. This vulnerability allows attackers to gain unauthorized access to the file system, potentially leading to arbitrary file deletion. Organizations using this platform should assess their security measures and apply any available updates to mitigate risks associated with this vulnerability.

Affected Version(s)

HPE Intelligent Management Center Platform (IMC Plat) IMC PLAT 7.3 E0506P09

References

http://www.securitytracker.com/id/1041412

vdb-entryx_refsource_SECTRACK

https://support.hpe.com/hpsc/doc/public/display?docLocale...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 6, 2018
Vulnerability Reserved
Feb 15, 2018