CVE-2016-4372
Last modified
CVE-2016-4372 is a vulnerability of currently unknown severity. HPE iMC PLAT before 7.2 E0403P04, iMC EAD before 7.2 E0405P05, iMC APM before 7.2 E0401P04, iMC NTA before 7.2 E0401P01, iMC BIMS before 7.2 E0402P02, and iMC UAM_TAM before 7.2 E0405P05 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.. EPSS estimates a 19.44% chance of exploitation in the next 30 days.
Description
HPE iMC PLAT before 7.2 E0403P04, iMC EAD before 7.2 E0405P05, iMC APM before 7.2 E0401P04, iMC NTA before 7.2 E0401P01, iMC BIMS before 7.2 E0402P02, and iMC UAM_TAM before 7.2 E0405P05 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Hp | Intelligent Management Center Application Performance Manager | <= 7.2 |
| Hp | Intelligent Management Center Branch Intelligent Management System | <= 7.2 |
| Hp | Intelligent Management Center Endpoint Admission Defense | <= 7.2 |
| Hp | Intelligent Management Center Network Traffic Analyzer | <= 7.2 |
| Hp | Intelligent Management Center Platform | <= 7.2 |
| Hp | Intelligent Management Center User Access Management | <= 7.2 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-4372?
How severe is CVE-2016-4372?
How do I fix CVE-2016-4372?
Are you affected by CVE-2016-4372?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST