Vulnerability Details CVE-2017-13982
A directory traversal vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows users to upload unrestricted files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.033
EPSS Ranking 86.7%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 9.0
References
- http://www.securityfocus.com/bid/101199
- http://www.zerodayinitiative.com/advisories/ZDI-17-719/
- https://softwaresupport.hpe.com/km/KM02942065
- https://www.auscert.org.au/bulletins/52154
- http://www.securityfocus.com/bid/101199
- http://www.zerodayinitiative.com/advisories/ZDI-17-719/
- https://softwaresupport.hpe.com/km/KM02942065
- https://www.auscert.org.au/bulletins/52154
Products affected by CVE-2017-13982
-
cpe:2.3:a:hp:bsm_platform_application_performance_management_system_health:9.26
-
cpe:2.3:a:hp:bsm_platform_application_performance_management_system_health:9.30
-
cpe:2.3:a:hp:bsm_platform_application_performance_management_system_health:9.40