First published: Mon Aug 06 2018(Updated: )
A remote code execution vulnerability was identified in HP Business Service Management (BSM) using Apache Commons Collection Java Deserialization versions v9.20-v9.26
Credit: security-alert@hpe.com
Affected Software | Affected Version | How to fix |
---|---|---|
HP Business Service Management | >=9.20<=9.26 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2016-4405 has a high severity rating due to its potential for remote code execution.
To fix CVE-2016-4405, update your HP Business Service Management to a version later than 9.26.
CVE-2016-4405 affects HP Business Service Management versions 9.20 to 9.26.
CVE-2016-4405 is classified as a remote code execution vulnerability.
CVE-2016-4405 is caused by insecure Java deserialization in Apache Commons Collections.