Arbitrary Command Execution Vulnerability in HPE Service Manager (SM) 9.3x and 9.4x

Arbitrary Command Execution Vulnerability in HPE Service Manager (SM) 9.3x and 9.4x

CVE-2016-1998 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

HPE Service Manager (SM) 9.3x before 9.35 P4 and 9.4x before 9.41.P2 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library.

Learn more about our Cis Benchmark Audit For Apache Http Server.