Bird_banner_small4
HPE Intelligent Management Center userSelectPagingContent Expression Language Injection
TSL ID TSL20170814-10
CVE ID(s) CVE-2017-12521
Severity High
Description

An Expression Language injection vulnerability has been reported in HPE Intelligent Management Center. The vulnerability is due to insufficient handling of the beanName request parameter on userSelectPagingContent.xhtml.

A remote, authenticated attacker can exploit this vulnerability by sending a crafted request to the target server. Successful exploitation results in the execution of arbitrary code under the security context of the SYSTEM user.

The vendor, HPE, has released the following advisory regarding this vulnerability:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03768en_us

Affected Products
  • HPE iMC PLAT 7.3 E0504
CVSS Score Base 8.5 (AV:N/AC:M/Au:S/C:C/I:C/A:C):
  • Access vector is NETWORK
  • Access complexity is MEDIUM
  • Level of authentication required is SINGLE
  • Impact of this vulnerability on data confidentiality is COMPLETE
  • Impact of this vulnerability on data integrity is COMPLETE
  • Impact of this vulnerability on data availability is COMPLETE
Temporal 6.3 (E:U/RL:OF/RC:C):
  • The exploitability level of this vulnerability is UNPROVEN
  • The remediation level of this vulnerability is OFFICIAL FIX
  • The report confidence level of this vulnerability is CONFIRMED
Identifiers
ZDI
References https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03768en_us
Related Threats