Detections
Analytics
HP Network Node Manager i < 10.20 Multiple Vulnerabilities
high Nessus Plugin ID 94933
Language:
Synopsis
A web management application running on the remote host is affected by multiple vulnerabilities.Description
The HP Network Node Manager i (NNMi) server running on the remote host is a version prior to 10.20. It is, therefore, affected by multiple vulnerabilities :- A remote code execution vulnerability exists due to unsafe deserialize calls of unauthenticated Java objects to the Apache Commons Collections (ACC) library. An unauthenticated, remote attacker can exploit this to execute arbitrary code on the target host.
(CVE-2016-4398)
- Multiple reflected cross-site scripting (XSS) vulnerabilities exist due to improper validation of input before returning it to users. An unauthenticated, remote attacker can exploit these, via a specially crafted request, to execute arbitrary script code in a user's browser session. (CVE-2016-4399, CVE-2016-4400)
Solution
Upgrade NNMi to version 10.20 or later.See Also
Plugin Details
Severity: High
ID: 94933
File Name: hp_nnmi_console_10_10.nasl
Version: 1.10
Type: remote
Family: CGI abuses
Published: 11/17/2016
Updated: 11/14/2019
Configuration: Enable paranoid mode
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 4.8
Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS Score Source: CVE-2016-4398
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 7.7
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:hp:network_node_manager_i
Required KB Items: Settings/ParanoidReport, installed_sw/HP Network Node Manager i
Exploit Ease: No known exploits are available
Patch Publication Date: 11/4/2016
Vulnerability Publication Date: 1/28/2015
Reference Information
CVE: CVE-2016-4398, CVE-2016-4399, CVE-2016-4400
BID: 94195
CERT: 576313
HP: HPSBGN03656, PSRT110235, emr_na-c05325823