CVE-2016-4381

Name: CVE-2016-4381
Creator: NVD / NIST
Published: 2016-09-08T16:59:04.157+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.37%

Last modified Jun 17, 2026

CVE-2016-4381 is a vulnerability of currently unknown severity. HPE XP7 Command View Advanced Edition (CVAE) Suite 6.x through 8.x before 8.4.1-02, when Replication Manager (RepMgr) and Device Manager (DevMgr) are enabled, allows local users to bypass intended access restrictions via unspecified vectors.. EPSS estimates a 0.37% chance of exploitation in the next 30 days.

Description

HPE XP7 Command View Advanced Edition (CVAE) Suite 6.x through 8.x before 8.4.1-02, when Replication Manager (RepMgr) and Device Manager (DevMgr) are enabled, allows local users to bypass intended access restrictions via unspecified vectors.

Metrics

EPSS Probability

0.37%

28.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-264

Affected Software

Vendor	Product	Versions
Hp	Xp7 Command View	<= 8.4.1

References

http://www.securityfocus.com/bid/92733
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05257711Patch, Vendor Advisory
http://www.securityfocus.com/bid/92733
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05257711Patch, Vendor Advisory

Timeline

Published: Sep 8, 2016
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2016-4381?

How severe is CVE-2016-4381?

Severity scoring for CVE-2016-4381 is pending analysis. The EPSS model estimates a 0.37% probability of exploitation in the next 30 days.

How do I fix CVE-2016-4381?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2016-4381?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST