CVE-2016-2001 — HP Universal Cmbd Foundation vulnerability

3 documents3 sources

Severity

7.4HIGHNVD

EPSS

0.5%

top 34.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Universal Cmbd Foundation

Timeline

PublishedApr 12

Latest updateMay 17

Description

HPE Universal CMDB Foundation 10.0, 10.01, 10.10, 10.11, and 10.20 allows remote attackers to obtain sensitive information or conduct URL redirection attacks via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:NExploitability: 2.8 | Impact: 4.0

Affected Packages1 packages

▶NVDhp/universal_cmbd_foundation5 versions+4

Patches

Patch: h20566.www2.hpe.com ↗Patch: h20566.www2.hpe.com ↗

🔴Vulnerability Details

GHSA

GHSA-9647-2gr2-w2rp: HPE Universal CMDB Foundation 10↗2022-05-17

▶

CVEList

CVE-2016-2001: HPE Universal CMDB Foundation 10↗2016-04-12

▶