CVE-2011-1854 — HP Intelligent Management Center vulnerability

CWE-3993 documents3 sources

Severity

10.0CRITICALNVD

EPSS

24.3%

top 3.89%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Intelligent Management Center

Timeline

PublishedMay 13

Latest updateMay 13

Description

Use-after-free vulnerability in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a long syslog packet, related to an exception handler.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDhp/intelligent_management_center5.0

Patches

Patch: h20000.www2.hp.com ↗Patch: h20000.www2.hp.com ↗

🔴Vulnerability Details

GHSA

GHSA-mfx4-8gmv-hmqc: Use-after-free vulnerability in HP Intelligent Management Center (IMC) 5↗2022-05-13

▶

CVEList

CVE-2011-1854: Use-after-free vulnerability in HP Intelligent Management Center (IMC) 5↗2011-05-13

▶