Vulnerability Details CVE-2016-2009
HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.6%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
Products affected by CVE-2016-2009
-
cpe:2.3:a:hp:network_node_manager_i:10.00
-
cpe:2.3:a:hp:network_node_manager_i:10.01
-
cpe:2.3:a:hp:network_node_manager_i:9.20
-
cpe:2.3:a:hp:network_node_manager_i:9.23
-
cpe:2.3:a:hp:network_node_manager_i:9.24
-
cpe:2.3:a:hp:network_node_manager_i:9.25