The CGI scripts in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 do not properly validate an unspecified parameter, which allows remote malicious users to execute arbitrary commands by using a command string for this parameter's value, related to a "command injection vulnerability."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp openview network node manager 7.53 |
||
hp openview network node manager 7.51 |