CVE-2020-7159

Critical

A customtemplateselect expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management…

hpe·CWE-917·Published 2020-10-19

CVSS

9.8

EPSS

0.07

KEV

Exploits

cve.orgen

192 chars

A customtemplateselect expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).

NVDen

192 chars

A customtemplateselect expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).

Se detectó una vulnerabilidad de ejecución de código remota de una inyección de lenguaje de expresiones de customtemplateselect en HPE Intelligent Management Center (iMC): versión(es): anteriores a iMC PLAT 7.3 (E0705P07)

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	10.0	10.0	10.0	AV:N/AC:L/Au:N/C:C/I:C/A:C
3.1	Primary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H