Vulnerability Description
An authentication vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows remote users to traverse directory leading to disclosure of information.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Bsm Platform Application Performance Management System Health | 9.26 |
Related Weaknesses (CWE)
References
- http://zerodayinitiative.com/advisories/ZDI-17-721/
- https://softwaresupport.hpe.com/km/KM02942065
- https://www.auscert.org.au/bulletins/52154
- http://zerodayinitiative.com/advisories/ZDI-17-721/
- https://softwaresupport.hpe.com/km/KM02942065
- https://www.auscert.org.au/bulletins/52154
FAQ
What is CVE-2017-13985?
CVE-2017-13985 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An authentication vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows remote users to traverse directory leading to disclosu...
How severe is CVE-2017-13985?
CVE-2017-13985 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-13985?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Bsm Platform Application Performance Management System Health.