CVE-2017-5791
published 2017-10-11CVE-2017-5791: The doFilter method in UrlAccessController in HPE Intelligent Management Center (iMC) PLAT 7.2 E0403P06 allows remote bypass of authentication via unspecified…
PriorityP275critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
68.92%
99.3th percentile
The doFilter method in UrlAccessController in HPE Intelligent Management Center (iMC) PLAT 7.2 E0403P06 allows remote bypass of authentication via unspecified strings in a URI.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hp | intelligent_management_center_plat | — | — |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET WEB_SPECIFIC_APPS HPE Intelligent Management Center UrlAccessController Authentication Bypass (CVE 2017-5791)
suricata·2025-12-11
ET WEB_SPECIFIC_APPS HPE Intelligent Management Center UrlAccessController Authentication Bypass (CVE 2017-5791)
ET WEB_SPECIFIC_APPS HPE Intelligent Management Center UrlAccessController Authentication Bypass (CVE 2017-5791)
Rule: alert http any any -> $HOME_NET any (msg:"ET WEB_SPECIFIC_APPS HPE Intelligent Management Center UrlAccessController Authentication Bypass (CVE 2017-5791)"; flow:established,to_server; http.uri; content:"/imc/primepush/"; startswith; pcre:"/^(?:(?:\x2e|%(?:25)?2[Ee]){1,2}(?:\x2f|\x5c|%(?:25)?5[Cc]|%(?:25)?2[Ff]){1,}){2,}/R"; reference:url,www.zerodayinitiative.com/blog/2018/2/6/one-mans-patch-is-another-mans-treasure-a-tale-of-a-failed-hpe-patch; classtype:web-application-attack; sid:2066281; rev:1; metadata:attack_target Server, tls_state TLSDecrypt, created_at 2025_12_11, deployment Perimeter, deployment Internal, deployment SSLDecrypt, confidence High, signature_severi
No public exploits indexed.
No writeups or analysis indexed.
http://www.securityfocus.com/bid/101224http://www.securityfocus.com/bid/96815http://www.securitytracker.com/id/1037983http://www.zerodayinitiative.com/advisories/ZDI-17-161/https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03716en_ushttp://www.securityfocus.com/bid/101224http://www.securityfocus.com/bid/96815http://www.securitytracker.com/id/1037983http://www.zerodayinitiative.com/advisories/ZDI-17-161/https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03716en_us
2017-10-11
Published