HPE System Management Homepage prior to 7.5.4 allows remote malicious users to execute arbitrary code via unspecified vectors.
hp system management homepage