Main Vulnerability Database Vulnerabilities #VU16187

Buffer overflow in HPE iMC PLAT - CVE-2018-7114

Published: November 29, 2018 / Updated: November 30, 2018

Vulnerability identifier: #VU16187

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-7114

CWE-ID: CWE-120

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: HPE

Affected software:
HPE iMC PLAT

Detailed vulnerability description

The vulnerability allows a local unprivileged attacker to execute arbitrary code on the target system.

The vulnerability exists due to buffer overflow. A local unauthenticated attacker can trigger memory corruption and execute arbitrary code with elevated privileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

How to mitigate CVE-2018-7114

Update to version 7.3 E0605P06.

Sources

https://support.hpe.com/hpsc/doc/public/display?docId=hpesbhf03906en_us

Buffer overflow in HPE iMC PLAT - CVE-2018-7114

Detailed vulnerability description

How to mitigate CVE-2018-7114

Sources

Please verify you're human