CVE-2016-2003
First published: Wed Apr 20 2016(Updated: )
HPE P9000 Command View Advanced Edition Software (CVAE) 7.x and 8.x before 8.4.0-00 and XP7 CVAE 7.x and 8.x before 8.4.0-00 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP XP7 Command View Advanced Edition Suite | ||
| HP XP7 Command View Advanced Edition |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-2003?
CVE-2016-2003 has a high severity level, allowing remote command execution.
How do I fix CVE-2016-2003?
To fix CVE-2016-2003, upgrade to HPE P9000 Command View Advanced Edition Software version 8.4.0-00 or later.
What are the affected software versions for CVE-2016-2003?
CVE-2016-2003 affects HPE P9000 Command View Advanced Edition Software versions 7.x and 8.x prior to 8.4.0-00.
What type of vulnerability is CVE-2016-2003?
CVE-2016-2003 is a vulnerability that allows remote attackers to execute arbitrary commands through crafted serialized Java objects.
Which library is related to CVE-2016-2003?
CVE-2016-2003 is related to the Apache Commons Collections (ACC) library.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/remedy
- agent/author
- agent/severity
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/hp
- canonical/hp xp7 command view advanced edition suite
- canonical/hp xp7 command view advanced edition