Vulnerability in Opentext Vertica

CVE-2015-6867

The vertica-udx-zygote process in HP Vertica 7.1.1 UDx does not require authentication, which allows remote attackers to execute arbitrary commands via a crafted packet, aka ZDI-CAN-2914.

EPSS: 0.009 (76.3th percentile) — read the EPSS interpretation.

Affected products

Opentext Vertica — versions 7.1.1
N/a — versions n/a

Weakness classification (CWE)

CWE-284 — Improper Access Control

References

cve@mitre.org (x_refsource_MISC)
77405 (vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)