CVE-2016-4368
published 2016-06-08CVE-2016-4368: HPE Universal CMDB 10.0 through 10.21, Universal CMDB Configuration Manager 10.0 through 10.21, and Universal Discovery 10.0 through 10.21 allow remote…
PriorityP265critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
4.73%
90.7th percentile
HPE Universal CMDB 10.0 through 10.21, Universal CMDB Configuration Manager 10.0 through 10.21, and Universal Discovery 10.0 through 10.21 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hp | universal_cmbd_configuration_manager | — | — |
| hp | universal_cmbd_configuration_manager | — | — |
| hp | universal_cmbd_configuration_manager | — | — |
| hp | universal_cmbd_configuration_manager | — | — |
| hp | universal_cmbd_configuration_manager | — | — |
| hp | universal_cmbd_configuration_manager | — | — |
| hp | universal_cmbd_foundation | — | — |
| hp | universal_cmbd_foundation | — | — |
| hp | universal_cmbd_foundation | — | — |
| hp | universal_cmbd_foundation | — | — |
| hp | universal_cmbd_foundation | — | — |
| hp | universal_cmbd_foundation | — | — |
| hp | universal_discovery | — | — |
| hp | universal_discovery | — | — |
| hp | universal_discovery | — | — |
| hp | universal_discovery | — | — |
| hp | universal_discovery | — | — |
| hp | universal_discovery | — | — |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3p42-7grr-wj6x: HPE Universal CMDB 10
ghsa_unreviewed·2022-05-17
CVE-2016-4368 [CRITICAL] CWE-20 GHSA-3p42-7grr-wj6x: HPE Universal CMDB 10
HPE Universal CMDB 10.0 through 10.21, Universal CMDB Configuration Manager 10.0 through 10.21, and Universal Discovery 10.0 through 10.21 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Citrix
Citrix Security Bulletin CTX218361
vendor_citrix·CVSS 8.8
CVE-2016-9028 [HIGH] Citrix Security Bulletin CTX218361
Citrix Security Bulletin CTX218361
CVE References: CVE-2016-9028, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX219378
vendor_citrix·CVSS 6.0
CVE-2016-10024 [MEDIUM] Citrix Security Bulletin CTX219378
Citrix Security Bulletin CTX219378
CVE References: CVE-2016-10024, CVE-2016-10025, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX213045
vendor_citrix·CVSS 7.5
CVE-2016-4810 [HIGH] Citrix Security Bulletin CTX213045
Citrix Security Bulletin CTX213045
CVE References: CVE-2016-4810, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX205496
vendor_citrix·CVSS 6.3
CVE-2016-1571 [MEDIUM] Citrix Security Bulletin CTX205496
Citrix Security Bulletin CTX205496
CVE References: CVE-2016-1571, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX221578
vendor_citrix·CVSS 9.9
CVE-2016-9603 [CRITICAL] Citrix Security Bulletin CTX221578
Citrix Security Bulletin CTX221578
CVE References: CVE-2016-9603, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX220329
vendor_citrix·CVSS 5.9
CVE-2016-0270 [MEDIUM] Citrix Security Bulletin CTX220329
Citrix Security Bulletin CTX220329
CVE References: CVE-2016-0270, CVE-2017-5933, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX212736
vendor_citrix·CVSS 8.8
CVE-2016-3710 [HIGH] Citrix Security Bulletin CTX212736
Citrix Security Bulletin CTX212736
CVE References: CVE-2016-3710, CVE-2016-3712, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX218775
vendor_citrix·CVSS 7.9
CVE-2016-9379 [HIGH] Citrix Security Bulletin CTX218775
Citrix Security Bulletin CTX218775
CVE References: CVE-2016-9379, CVE-2016-9380, CVE-2016-9381, CVE-2016-9382, CVE-2016-9383, CVE-2016-9385, CVE-2016-9386, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX206001
vendor_citrix·CVSS 9.8
CVE-2016-2071 [CRITICAL] Citrix Security Bulletin CTX206001
Citrix Security Bulletin CTX206001
CVE References: CVE-2016-2071, CVE-2016-2072, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX219136
vendor_citrix·CVSS 7.5
CVE-2016-9637 [HIGH] Citrix Security Bulletin CTX219136
Citrix Security Bulletin CTX219136
CVE References: CVE-2016-9637, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX207499
vendor_citrix·CVSS 6.1
CVE-2016-2789 [MEDIUM] Citrix Security Bulletin CTX207499
Citrix Security Bulletin CTX207499
CVE References: CVE-2016-2789, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX219580
vendor_citrix·CVSS 9.8
CVE-2016-9676 [CRITICAL] Citrix Security Bulletin CTX219580
Citrix Security Bulletin CTX219580
CVE References: CVE-2016-9676, CVE-2016-9677, CVE-2016-9678, CVE-2016-9679, CVE-2016-9680, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX213313
vendor_citrix·CVSS 6.1
CVE-2016-4945 [MEDIUM] Citrix Security Bulletin CTX213313
Citrix Security Bulletin CTX213313
CVE References: CVE-2016-4945, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX214006
vendor_citrix·CVSS 4.3
CVE-2016-5109 [MEDIUM] Citrix Security Bulletin CTX214006
Citrix Security Bulletin CTX214006
CVE References: CVE-2016-5109, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX213998
vendor_citrix·CVSS 6.1
CVE-2016-5433 [MEDIUM] Citrix Security Bulletin CTX213998
Citrix Security Bulletin CTX213998
CVE References: CVE-2016-5433, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX214954
vendor_citrix·CVSS 8.8
CVE-2016-6258 [HIGH] Citrix Security Bulletin CTX214954
Citrix Security Bulletin CTX214954
CVE References: CVE-2016-6258, CVE-2016-6259, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX213769
vendor_citrix·CVSS 9.8
CVE-2016-5302 [CRITICAL] Citrix Security Bulletin CTX213769
Citrix Security Bulletin CTX213769
CVE References: CVE-2016-5302, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX213549
vendor_citrix·CVSS 9.8
CVE-2016-5302 [CRITICAL] Citrix Security Bulletin CTX213549
Citrix Security Bulletin CTX213549
CVE References: CVE-2016-5302, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX215460
vendor_citrix·CVSS 9.8
CVE-2016-6493 [CRITICAL] Citrix Security Bulletin CTX215460
Citrix Security Bulletin CTX215460
CVE References: CVE-2016-6493, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2016-06-08
Published