CVE-2016-1989

3 documents3 sources
Severity
9.8CRITICAL
EPSS
13.5%
top 5.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
HP Network Automation
Timeline
PublishedMar 15
Latest updateMay 17

Description

HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2016-1988.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

NVDhp/network_automation5 versions+4

Patches

Patch: h20566.www2.hpe.comPatch: h20566.www2.hpe.com

🔴Vulnerability Details

2
GHSA
GHSA-8x56-x28r-45xf: HPE Network Automation 92022-05-17
CVEList
CVE-2016-1989: HPE Network Automation 92016-03-15
CVE-2016-1989 (CRITICAL CVSS 9.8) | HPE Network Automation 9.22 through | cvebase.io