10
CVE-2008-4559
- EPSS 3.97%
- Veröffentlicht 08.02.2009 21:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via shell metacharacters in argument fields to the (1) webappmon.exe or (2) OpenView5.exe CGI program. NOTE: this issue may be partially covered by CVE-2009-0205.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hp ≫ Openview Network Node Manager Version7.0.1 Editionhp_ux
Hp ≫ Openview Network Node Manager Version7.0.1 Editionlinux
Hp ≫ Openview Network Node Manager Version7.0.1 Editionsolaris
Hp ≫ Openview Network Node Manager Version7.0.1 Editionwindows
Hp ≫ Openview Network Node Manager Version7.51 Update- Editionhp-ux
Hp ≫ Openview Network Node Manager Version7.51 Update- Editionlinux
Hp ≫ Openview Network Node Manager Version7.51 Update- Editionsolaris
Hp ≫ Openview Network Node Manager Version7.51 Update- Editionwindows
Hp ≫ Openview Network Node Manager Version7.53 Update- Editionhp-ux
Hp ≫ Openview Network Node Manager Version7.53 Update- Editionlinux
Hp ≫ Openview Network Node Manager Version7.53 Update- Editionsolaris
Hp ≫ Openview Network Node Manager Version7.53 Update- Editionwindows
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.97% | 0.873 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.