CVE-2011-1850 — Improper Restriction of Operations within the Bounds of a Memory Buffer in HP Intelligent Management Center

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources

Severity

10.0CRITICALNVD

EPSS

29.8%

top 3.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Intelligent Management Center

Timeline

PublishedMay 13

Latest updateMay 13

Description

Stack-based buffer overflow in the logging functionality in dbman.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via vectors related to a received action.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDhp/intelligent_management_center5.0

Patches

Patch: h20000.www2.hp.com ↗Patch: h20000.www2.hp.com ↗

🔴Vulnerability Details

GHSA

GHSA-rphx-f44v-cpfp: Stack-based buffer overflow in the logging functionality in dbman↗2022-05-13

▶

CVEList

CVE-2011-1850: Stack-based buffer overflow in the logging functionality in dbman↗2011-05-13

▶