PT-2017-9672 · Hewlett Packard · Hp Operations Orchestration

Published

2017-01-10

Updated

2018-03-05

CVE-2016-8519

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions HPE Operations Orchestration versions prior to 10.70

Description A remote code execution issue was discovered, allowing for the deserialization of untrusted data. This issue affects HPE Operations Orchestration Community edition and Enterprise edition.

Recommendations For versions prior to 10.70, update to version 10.70 or later to resolve the issue.

Fix

Deserialization of Untrusted Data

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-502

Related Identifiers

CVE-2016-8519

ZDI-17-001

Affected Products

Hp Operations Orchestration

PT-2017-9672 · Hewlett Packard · Hp Operations Orchestration

CVE-2016-8519

Weakness Enumeration

Related Identifiers

Affected Products

References · 7