1. CVE-Search
  2. CVE-2016-4377
ID CVE-2016-4377
Summary HPE Smart Update in Storage Sizing Tool before 13.0, Converged Infrastructure Solution Sizer Suite (CISSS) before 2.13.1, Power Advisor before 7.8.2, Insight Management Sizer before 16.12.1, Synergy Planning Tool before 3.3, SAP Sizing Tool before 16.12.1, Sizing Tool for SAP Business Suite powered by HANA before 16.11.1, Sizer for ConvergedSystems Virtualization before 16.7.1, Sizer for Microsoft Exchange Server before 16.12.1, Sizer for Microsoft Lync Server 2013 before 16.12.1, Sizer for Microsoft SharePoint 2013 before 16.13.1, Sizer for Microsoft SharePoint 2010 before 16.11.1, and Sizer for Microsoft Skype for Business Server 2015 before 16.5.1 allows remote attackers to execute arbitrary code via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:hp:converged_infrastructure_solution_sizer_suite:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:converged_infrastructure_solution_sizer_suite:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:insight_management_sizer:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:insight_management_sizer:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:power_advisor:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:power_advisor:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:sap_sizing_tool:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:sap_sizing_tool:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:sizer_for_converged_systems_virtualization:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:sizer_for_converged_systems_virtualization:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:sizer_for_microsoft_exchange_server_2010:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:sizer_for_microsoft_exchange_server_2010:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:sizer_for_microsoft_exchange_server_2013:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:sizer_for_microsoft_exchange_server_2013:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:sizer_for_microsoft_exchange_server_2016:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:sizer_for_microsoft_exchange_server_2016:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:sizer_for_microsoft_lync_server_2013:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:sizer_for_microsoft_lync_server_2013:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:sizer_for_microsoft_sharepoint_2010:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:sizer_for_microsoft_sharepoint_2010:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:sizer_for_microsoft_sharepoint_2013:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:sizer_for_microsoft_sharepoint_2013:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:sizer_for_microsoft_skype_for_business_server_2015:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:sizer_for_microsoft_skype_for_business_server_2015:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:sizing_tool_for_sap_business_suite_powered_by_hana:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:sizing_tool_for_sap_business_suite_powered_by_hana:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:storage_sizing_tool:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:storage_sizing_tool:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:synergy_planning_tool:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:synergy_planning_tool:*:*:*:*:*:*:*:*
CVSS
Base: 7.6 (as of 28-11-2016 - 20:17)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:H/Au:N/C:C/I:C/A:C
refmap via4
bid 92479
confirm https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05237578
Last major update 28-11-2016 - 20:17
Published 22-08-2016 - 10:59
Last modified 28-11-2016 - 20:17
Back to Top