CVE-2018-7115

MEDIUM

Description

HPE Intelligent Management Center (IMC) prior to IMC PLAT 7.3 (E0605P06) is vulnerable to a remote buffer overflow in dbman.exe opcode 10001 on Windows. This problem is resolved in IMC PLAT 7.3 (E0605P06) or subsequent versions.

References

http://www.securityfocus.com/bid/106211

http://www.securitytracker.com/id/1042182

https://support.hpe.com/hpsc/doc/public/display?docId=hpesbhf03906en_us

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03906en_us

Details

Source: MITRE

Published: 2018-12-03

Updated: 2018-12-30

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3.0

Base Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Impact Score: 1.4

Exploitability Score: 3.9

Severity: MEDIUM

Vulnerable Software

Configuration 1

AND

cpe:2.3:a:hp:intelligent_management_center:*:*:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:-:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0503:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0504:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0504p02:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0504p04:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0506:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p03:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p07:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p09:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0605:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h02:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h05:*:*:*:*:*:*

cpe:2.3:a:hp:intelligent_management_center:7.3:e0605p04:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*