HP Operations Manager i (OMi) 9.1 / 9.2 RCE

High Nessus Plugin ID 74253


The remote host has an operations management application installed that is affected by an unspecified code execution vulnerability.


The HP Operations Manager i (OMi) installed on the remote host is version 9.1 or 9.2. It is, therefore, affected by an unspecified code execution vulnerability that allows an authenticated, remote attacker to execute arbitrary code by leveraging the OMi operator role.


Apply the vendor-supplied patch.

See Also



Plugin Details

Severity: High

ID: 74253

File Name: hp_ops_manageri_hpsbmu03042.nasl

Version: $Revision: 1.3 $

Type: local

Agent: windows

Family: Windows

Published: 2014/05/30

Modified: 2015/09/04

Dependencies: 85627

Risk Information

Risk Factor: High


Base Score: 8.5

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:hp:operations_manager_i

Required KB Items: SMB/HP Operations Manager i/Version, SMB/HP Operations Manager i/Build, SMB/HP Operations Manager i/Path

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2014/05/20

Vulnerability Publication Date: 2014/05/20

Reference Information

CVE: CVE-2014-2607

BID: 67570

OSVDB: 107247

HP: emr_na-c04296442, HPSBMU03042, SSRT101575

IAVB: 2014-B-0064