Vulnerability Description
A local arbitrary execution of commands vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
CVSS Score
5.6
MEDIUM
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | System Management Homepage | < 7.6.1 |
| Linux | Linux Kernel | - |
| Microsoft | Windows | - |
References
- http://www.securityfocus.com/bid/101029Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1039437Third Party AdvisoryVDB Entry
- https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_usVendor Advisory
- http://www.securityfocus.com/bid/101029Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1039437Third Party AdvisoryVDB Entry
- https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_usVendor Advisory
FAQ
What is CVE-2017-12552?
CVE-2017-12552 is a vulnerability with a CVSS score of 5.6 (MEDIUM). A local arbitrary execution of commands vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
How severe is CVE-2017-12552?
CVE-2017-12552 has been rated MEDIUM with a CVSS base score of 5.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-12552?
Check the references section above for vendor advisories and patch information. Affected products include: Hp System Management Homepage, Linux Linux Kernel, Microsoft Windows.