Main Vulnerability Database Vulnerabilities #VU16187

#VU16187 Buffer overflow in HPE iMC PLAT - CVE-2018-7114

Published: November 29, 2018 / Updated: November 30, 2018

Vulnerability identifier: #VU16187

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-7114

CWE-ID: CWE-120

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
HPE iMC PLAT

Software vendor:
HPE

Description

The vulnerability allows a local unprivileged attacker to execute arbitrary code on the target system.

The vulnerability exists due to buffer overflow. A local unauthenticated attacker can trigger memory corruption and execute arbitrary code with elevated privileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Remediation

Update to version 7.3 E0605P06.

External links

https://support.hpe.com/hpsc/doc/public/display?docId=hpesbhf03906en_us

#VU16187 Buffer overflow in HPE iMC PLAT - CVE-2018-7114

Description

Remediation

External links

Please verify you're human