Arbitrary Files Modification in HP Network Automation - CVE-2016-4386
Published: September 29, 2016 / Updated: September 30, 2016
Vulnerability identifier: #VU691
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2016-4386
CWE-ID: CWE-284
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Hewlett Packard Enterprise Development LP
Affected software:
HP Network Automation
HP Network Automation
Detailed vulnerability description
The vulnerability allows a remote user to modify arbitrary files on the target system.
The vulnerability is due to an unspecified access conditions that allows attackers to obtain and modify files on a targeted system that were not allowed to access.
Successful exploitation of the vulnerability mau result in files modification and further consequences.
The vulnerability is due to an unspecified access conditions that allows attackers to obtain and modify files on a targeted system that were not allowed to access.
Successful exploitation of the vulnerability mau result in files modification and further consequences.