HPE Network Node Manager i (NNMi) Multiple Vulnerabilities (HPESBGN03762)
Critical Nessus Plugin ID 101296
SynopsisAn application installed on the remote Linux host is affected by multiple vulnerabilities.
DescriptionThe version of HPE Network Node Manager i (NNMi) installed on the remote Linux host is 10.0x prior to 10.00 Patch 5, 10.1x prior to 10.10 Patch 4, or 10.2x prior to 10.20 Patch 3. It is, therefore, affected by multiple vulnerabilities that allow an unauthenticated, remote attacker to execute arbitrary code, bypass security restrictions, and perform unauthorized actions.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
SolutionUpgrade to HPE Network Node Manager i version 10.00 Patch 5 / 10.10 Patch 4 / 10.20 Patch 3 or later.