Vulnerability in Hewlett Packard Enterprise System Management Homepage For Windows And Linux
CVE-2017-12544
A cross-site scripting vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
EPSS: 0.599 (98.3th percentile) — read the EPSS interpretation.
Affected products
- Hewlett Packard Enterprise System Management Homepage For Windows And Linux — versions prior to 7.6.1
Public proof-of-concept exploits
References
- 1039437 (vdb-entry, x_refsource_SECTRACK)
- 101029 (vdb-entry, x_refsource_BID)
- support.hpe.com/hpsc/doc/public/display (x_refsource_CONFIRM)
Frequently asked questions
- What is CVE-2017-12544?
- CVE-2017-12544 is a vulnerability in Hewlett Packard Enterprise System Management Homepage For Windows And Linux. Published 2018-02-15.
- Is CVE-2017-12544 known to be exploited?
- 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.