CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2018-7076
https://notcve.org/view.php?id=CVE-2018-7076
A remote code execution vulnerability was identified in HPE Intelligent Management Center (iMC) prior to iMC PLAT 7.3 E0605P04. Se ha identificado una vulnerabilidad de ejecución remota de código en HPE Intelligent Management Center (iMC) en versiones anteriores a la PLAT 7.3 E0605P04. • https://exchange.xforce.ibmcloud.com/vulnerabilities/151693 https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03901en_us • CWE-287: Improper Authentication •
CVSS: 10.0EPSS: 15%CPEs: 14EXPL: 0CVE-2018-7114 – Hewlett Packard Enterprise Intelligent Management Center dbman decryptMsgAes Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-7114
HPE Intelligent Management Center (IMC) prior to IMC PLAT 7.3 (E0605P06) is vulnerable to remote buffer overflow in dbman leading to code execution. This problem is resolved in IMC PLAT 7.3 (E0605P06) or subsequent versions. HPE Intelligent Management Center (IMC) en versiones anteriores a IMC PLAT 7.3 (E0605P06) es vulnerable a un desbordamiento de búfer remoto en dbman que conduce a una ejecución de código. El problema se ha resuelto en IMC PLAT 7.3 E0605P06 o en versiones posteriores. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. • http://www.securityfocus.com/bid/106211 http://www.securitytracker.com/id/1042182 https://support.hpe.com/hpsc/doc/public/display?docId=hpesbhf03906en_us https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03906en_us • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2018-7102 – Hewlett Packard Enterprise Intelligent Management Center imciccdm createFabricAutoCfgFile Directory Traversal Arbitrary File Write Vulnerability
https://notcve.org/view.php?id=CVE-2018-7102
A security vulnerability in HPE Intelligent Management Center (iMC) PLAT E0506P09, createFabricAutoCfgFile could be remotely exploited via directory traversal to allow remote arbitrary file modification. Podría explotarse remotamente una vulnerabilidad de seguridad en HPE Intelligent Management Center (iMC) PLAT E0506P09, en createFabricAutoCfgFile, mediante un salto de directorio para permitir la modificación de archivos arbitrarios. This vulnerability allows remote attackers to create arbitrary files on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the imciccdm component. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03887en_us • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8530
https://notcve.org/view.php?id=CVE-2016-8530
A remote denial of service vulnerability in HPE iMC PLAT version v7.2 E0403P06 and earlier was found. The problem was resolved in iMC PLAT 7.3 E0504 or subsequent version. Se ha encontrado una vulnerabilidad de denegación de servicio (DoS) remota en HPE iMC PLAT en versiones v7.2 E0403P06 y anteriores. El problema se ha resuelto en iMC PLAT 7.3 E0504 o en versiones posteriores. • https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05382418 https://www.tenable.com/security/research/tra-2017-09 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 6%CPEs: 4EXPL: 1CVE-2017-5815 – HPE Intelligent Management Center (iMC) 7.2 (E0403P10) - Code Execution
https://notcve.org/view.php?id=CVE-2017-5815
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P04 was found. Se ha encontrado una vulnerabilidad de ejecución remota de código en HPE Intelligent Management Center (iMC) PLAT 7.3 E0504P04. • https://www.exploit-db.com/exploits/44073 http://www.securitytracker.com/id/1038472 https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03743en_us • CWE-20: Improper Input Validation •