CVE-2016-2020

CWE-83527 documents16 sources
Severity
8.1HIGH
EPSS
0.2%
top 51.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
HP Matrix Operating EnvironmentHP Systems Insight Manager
Timeline
PublishedJun 8
Latest updateAug 22

Description

HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, CVE-2016-2019, CVE-2016-2021, CVE-2016-2022, and CVE-2016-2030.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NExploitability: 2.8 | Impact: 5.2

Affected Packages2 packages

🔴Vulnerability Details

3
OSV
libxstream-java vulnerabilities2024-08-22
GHSA
GHSA-99p8-mrp9-4j6p: HPE Systems Insight Manager (SIM) before 72022-05-17
CVEList
CVE-2016-2020: HPE Systems Insight Manager (SIM) before 72016-06-08

💥Exploits & PoCs

3
Exploit-DB
Foxit Reader 9.0.1.1049 - Arbitrary Code Execution2020-11-27
Exploit-DB
Sysaid 20.1.11 b26 - Remote Command Execution2020-03-10
Exploit-DB
Tomcat proprietaryEvaluate 9.0.0.M1 - Sandbox Escape2020-01-08

📋Vendor Advisories

7
Oracle
Oracle Oracle Fusion Middleware Risk Matrix: Jave APIs (BeanShell) — CVE-2016-25102020-10-15
Oracle
Oracle Oracle REST Data Services Risk Matrix: General (Apache Commons FileUpload) — CVE-2016-10000312020-10-15
Oracle
Oracle Oracle Supply Chain Risk Matrix: Install (Apache Groovy) — CVE-2016-68142020-07-15
Red Hat
glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop2020-07-09
Oracle
Oracle Oracle Database Server Risk Matrix: Oracle Multimedia — CVE-2016-102512020-04-15

🕵️Threat Intelligence

2
Unit42
Threat Brief: Microsoft DNS Server Wormable Vulnerability CVE-2020-13502020-07-21
Tenable
Tenable Releases Plugins for Critical Windows CryptoAPI Vulnerability2020-01-15