SB2016090102 - Access Bypass in HP XP7 Command View Advance Edition
Published: September 1, 2016 Updated: October 3, 2016
Security Bulletin ID
SB2016090102
CSH Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Data manipulation
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 vulnerability.
1) Access Bypass (CVE-ID: CVE-2016-4381)
The vulnerability allows a local user to bypass access limitations on the target system.The weakness exists due to insufficient access control that allows a malicious user to bypass security restrictions.
Successful exploitation of the vulnerability may result in attacker's access to the vulnerable system with no permission and further attacks.
Remediation
Install update from vendor's website.