Arbitrary Command Execution in HPE Discovery and Dependency Mapping Inventory (DDMi)

Arbitrary Command Execution in HPE Discovery and Dependency Mapping Inventory (DDMi)

CVE-2016-4369 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

HPE Discovery and Dependency Mapping Inventory (DDMi) 9.30, 9.31, 9.32, 9.32 update 1, 9.32 update 2, and 9.32 update 3 allows remote authenticated users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library.

Learn more about our Cis Benchmark Audit For Apache Http Server.