CVE-2016-8529

EUVD-2016-9377
A Remote Arbitrary Command Execution vulnerability in HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS version v12.5 and earlier was found. The problem was resolved in LeftHand OS v12.6 or any subsequent version.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.6 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
Affected Products (NVD)
VendorProductVersion
hplefthand
𝑥
≤ 12.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/95970
http://www.securitytracker.com/id/1037762
https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05382958
http://www.securityfocus.com/bid/95970
http://www.securitytracker.com/id/1037762
https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05382958