HPE Universal CMDB 10.0 through 10.21, Universal CMDB Configuration Manager 10.0 through 10.21, and Universal Discovery 10.0 through 10.21 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HHP Universal Cmbd Configuration Manager
APPHp10.010.0110.1010.1110.2010.21HP Universal Cmbd Foundation
APPHp10.010.0110.1010.1110.2010.21HP Universal Discovery
APPHp10.010.0110.1010.1110.2010.21
Related vulnerabilities
Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1.) Operation Bridge Manager a...
The Universal Discovery component in HPE Universal CMDB 10.0, 10.01, 10.10, 10.11, 10.20, and 10.21 allows rem...
HPE Universal CMDB Foundation 10.0, 10.01, 10.10, 10.11, and 10.20 allows remote attackers to obtain sensitive...
The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect ex...
Heap-based buffer overflow in Adobe Flash Player before 13.0.0.296 and 14.x through 18.x before 18.0.0.194 on ...