Vulnerability Description
An authentication vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows remote users to delete arbitrary files via servlet directory traversal.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Bsm Platform Application Performance Management System Health | 9.26 |
Related Weaknesses (CWE)
References
- http://www.zerodayinitiative.com/advisories/ZDI-17-720/
- https://softwaresupport.hpe.com/km/KM02942065
- https://www.auscert.org.au/bulletins/52154
- http://www.zerodayinitiative.com/advisories/ZDI-17-720/
- https://softwaresupport.hpe.com/km/KM02942065
- https://www.auscert.org.au/bulletins/52154
FAQ
What is CVE-2017-13984?
CVE-2017-13984 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An authentication vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows remote users to delete arbitrary files via servlet dir...
How severe is CVE-2017-13984?
CVE-2017-13984 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-13984?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Bsm Platform Application Performance Management System Health.