CVE-2017-8994 HPE Operations Orchestration, Remote Code Execution Vulnerability (hpesbgn03767)

漏洞类别:Local

漏洞等级:

漏洞信息

HPE Operations Orchestration is a leading IT process automation solution designed to increase automation adoption in a traditional data center.

A potential security vulnerability has been identified in HPE Operations Orchestration product. The vulnerability could be exploited remotely to allow execution of code.

Affected versions:
HPE Operations Orchestration prior to v10.80

QID Detection Logic (Authentication)
This checks for vulnerable version of HPE Operations Orchestration.

漏洞危害

On successful exploitation it could be remotely exploited to allow remote code execution.

解决方案

Vendor has released update to address this vulnerability. Download it from here

Patch:
Following are links for downloading patches to fix the vulnerabilities:

hpesbgn03767en_us: Windows

Leave a Reply