CVE-2016-4381

CWE-2643 documents3 sources
Severity
4.5MEDIUM
EPSS
0.1%
top 80.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
HP XP7 Command View
Timeline
PublishedSep 8
Latest updateMay 17

Description

HPE XP7 Command View Advanced Edition (CVAE) Suite 6.x through 8.x before 8.4.1-02, when Replication Manager (RepMgr) and Device Manager (DevMgr) are enabled, allows local users to bypass intended access restrictions via unspecified vectors.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:LExploitability: 1.0 | Impact: 3.4

Affected Packages1 packages

Patches

Patch: h20566.www2.hpe.comPatch: h20566.www2.hpe.com

🔴Vulnerability Details

2
GHSA
GHSA-qgqx-m394-rcxp: HPE XP7 Command View Advanced Edition (CVAE) Suite 62022-05-17
CVEList
CVE-2016-4381: HPE XP7 Command View Advanced Edition (CVAE) Suite 62016-09-08
CVE-2016-4381 (MEDIUM CVSS 4.5) | HPE XP7 Command View Advanced Editi | cvebase.io