CVE-2020-24652
Description
A addvsiinterfaceinfo expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
6.729
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0506p07 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0506p03 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0506p02 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0504p4 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0504p04 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.0-e02020p03 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.0 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0705p06 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0705p04 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0705p02 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0705 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0605p06 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0504p2 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0504 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0503 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.2-e0403p06 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0503p02 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.0-e0101l02 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.0-e0101l01 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.0-e0101h04 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.0-e0101h03 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.0-e0101 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.0 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0506p09 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0605p04 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0605h05 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0605h02 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0605 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0506 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0504p02 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.1-e0202-enterprise | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.1-e0202 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.1-e0101p01 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.1 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.3-e0501 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.2-e0403p10 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.2-e0403p04 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.2-e0403p03 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.2-e0403l09 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.2-e0403l02 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.2-e0403l01 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 7.2-e0403 | NCM |
| Multiple Vulnerabilities affected in intelligent_management_center 5.2 | NCM |
| Improper Neutralization of Special Elements used in an Expression Language Statement (Expression Language Injection) Vulnerability (CVE-2020-24652) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234