CVE-2016-4367 — Sensitive Information Exposure in HP Universal Cmbd Foundation

CWE-200 — Sensitive Information Exposure3 documents3 sources

Severity

7.5HIGHNVD

EPSS

1.5%

top 18.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Universal Cmbd Foundation

Timeline

PublishedJun 8

Latest updateMay 17

Description

The Universal Discovery component in HPE Universal CMDB 10.0, 10.01, 10.10, 10.11, 10.20, and 10.21 allows remote attackers to obtain sensitive information via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

▶NVDhp/universal_cmbd_foundation6 versions+5

🔴Vulnerability Details

GHSA

GHSA-6c8p-gxjx-7qwx: The Universal Discovery component in HPE Universal CMDB 10↗2022-05-17

▶

CVEList

CVE-2016-4367: The Universal Discovery component in HPE Universal CMDB 10↗2016-06-08

▶