CVE-2017-14351

EUVD-2017-5854
A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.23. These vulnerabilities could be remotely exploited to allow code execution.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 85%
Affected Products (NVD)
VendorProductVersion
hpucmdb_configuration_manager
10.10
hpucmdb_configuration_manager
10.11
hpucmdb_configuration_manager
10.20
hpucmdb_configuration_manager
10.21
hpucmdb_configuration_manager
10.22
hpucmdb_configuration_manager
10.23
𝑥
= Vulnerable software versions
References
https://softwaresupport.hpe.com/km/KM02968622
https://www.tenable.com/security/research/tra-2017-32
https://softwaresupport.hpe.com/km/KM02968622
https://www.tenable.com/security/research/tra-2017-32