Vulnerability Details CVE-2016-2000
HPE Asset Manager 9.40, 9.41, and 9.50 and Asset Manager CloudSystem Chargeback 9.40 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2016-2000
-
cpe:2.3:a:hp:asset_manager:9.40
-
cpe:2.3:a:hp:asset_manager:9.41
-
cpe:2.3:a:hp:asset_manager:9.50
-
cpe:2.3:a:hp:asset_manager_cloudsystem_chargeback:9.40