HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
References
Link | Resource |
---|---|
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05103564 | Patch Vendor Advisory |
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05103564 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:47
Type | Values Removed | Values Added |
---|---|---|
References | () https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05103564 - Patch, Vendor Advisory |
Information
Published : 2016-05-07 10:59
Updated : 2024-11-21 02:47
NVD link : CVE-2016-2009
Mitre link : CVE-2016-2009
CVE.ORG link : CVE-2016-2009
JSON object : View
Products Affected
hp
- network_node_manager_i
CWE
CWE-284
Improper Access Control