Arbitrary Command Execution and Information Disclosure Vulnerability in HPE Project and Portfolio Management Center (PPM) 9.2x and 9.3x

Arbitrary Command Execution and Information Disclosure Vulnerability in HPE Project and Portfolio Management Center (PPM) 9.2x and 9.3x

CVE-2016-4370 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

HPE Project and Portfolio Management Center (PPM) 9.2x and 9.3x before 9.32.0002 allows remote authenticated users to execute arbitrary commands or obtain sensitive information via unspecified vectors.

Learn more about our User Device Pen Test.