CVE-2016-4398
UnknownEPSS 4.85%
Last modified
CVE-2016-4398 is a vulnerability of currently unknown severity. A remote arbitrary code execution vulnerability was identified in HP Network Node Manager i (NNMi) Software 10.00, 10.01 (patch1), 10.01 (patch 2), 10.10 using Java Deserialization.. EPSS estimates a 4.85% chance of exploitation in the next 30 days.
Description
A remote arbitrary code execution vulnerability was identified in HP Network Node Manager i (NNMi) Software 10.00, 10.01 (patch1), 10.01 (patch 2), 10.10 using Java Deserialization.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Hp | Network Node Manager I | 10.00 | — |
| Hp | Network Node Manager I | 10.01 | Patch1 |
| Hp | Network Node Manager I | 10.10 | — |
References
- http://www.securityfocus.com/bid/94195Third Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/94195Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-4398?
A remote arbitrary code execution vulnerability was identified in HP Network Node Manager i (NNMi) Software 10.00, 10.01 (patch1), 10.01 (patch 2), 10.10 using Java Deserialization.
How severe is CVE-2016-4398?
Severity scoring for CVE-2016-4398 is pending analysis. The EPSS model estimates a 4.85% probability of exploitation in the next 30 days.
How do I fix CVE-2016-4398?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2016-4398?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST