PT-2018-8276 · Hewlett Packard · Hpe Opencall Media Platform

Paolo Stagno

Published

2018-02-15

Updated

2018-03-15

CVE-2017-5799

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: HPE OpenCall Media Platform (OCMP) versions prior to 3.4.2 RP201 HPE OpenCall Media Platform (OCMP) versions prior to 4.4.7 RP702

Description: A Remote Code Execution issue was discovered in HPE OpenCall Media Platform (OCMP).

Recommendations: For versions prior to 3.4.2 RP201, update to version 3.4.2 RP201 or later. For versions prior to 4.4.7 RP702, update to version 4.4.7 RP702 or later.

Exploit

Fix

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74

Related Identifiers

CVE-2017-5799

Affected Products

Hpe Opencall Media Platform

PT-2018-8276 · Hewlett Packard · Hpe Opencall Media Platform

CVE-2017-5799

Weakness Enumeration

Related Identifiers

Affected Products

References · 5