CVE-2001-1123 — Improper Restriction of Operations within the Bounds of a Memory Buffer in HP Openview Network Node Manager

3 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.5%

top 34.83%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Openview Network Node Manager

Timeline

PublishedOct 1

Latest updateApr 30

Description

Vulnerability in Network Node Manager (NNM) 6.2 and earlier in HP OpenView allows a local user to execute arbitrary code, possibly via a buffer overflow in a long hostname or object ID.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDhp/openview_network_node_manager5.01, 6.1, 6.2+2

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-3m5h-3839-5w2g: Vulnerability in Network Node Manager (NNM) 6↗2022-04-30

▶

CVEList

CVE-2001-1123: Vulnerability in Network Node Manager (NNM) 6↗2002-03-15

▶