- Description
- Format string vulnerability in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via format string specifiers in input data that involves an invalid template name.
- Source
- hp-security-alert@hp.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
- nvd@nist.gov
- CWE-134
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F5CC1E39-5607-41A9-8BBE-A51F1AC9D5CB"
},
{
"criteria": "cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A3A4986C-97B8-4382-AC4B-55E22C6BAE62"
}
],
"operator": "OR"
}
]
}
]