CVE-2017-5806

Name of the Vulnerable Software and Affected Versions: HPE Intelligent Management Center (iMC) PLAT version 7.2

Description: A Remote Code Execution issue exists due to insufficient input validation in the HPE iMC Server service of the HPE Intelligent Management Center PLAT platform. Exploitation of this issue may allow a remote attacker to execute arbitrary code using the SSID attribute.

Recommendations: For HPE Intelligent Management Center (iMC) PLAT version 7.2, consider disabling the use of the SSID attribute until a patch is available to prevent potential exploitation. Restrict access to the HPE iMC Server service to minimize the risk of remote code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.