#VU691 Arbitrary Files Modification in HP Network Automation - CVE-2016-4386
Published: September 29, 2016 / Updated: September 30, 2016
Vulnerability identifier: #VU691
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2016-4386
CWE-ID: CWE-284
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
HP Network Automation
HP Network Automation
Software vendor:
Hewlett Packard Enterprise Development LP
Hewlett Packard Enterprise Development LP
Description
The vulnerability allows a remote user to modify arbitrary files on the target system.
The vulnerability is due to an unspecified access conditions that allows attackers to obtain and modify files on a targeted system that were not allowed to access.
Successful exploitation of the vulnerability mau result in files modification and further consequences.
The vulnerability is due to an unspecified access conditions that allows attackers to obtain and modify files on a targeted system that were not allowed to access.
Successful exploitation of the vulnerability mau result in files modification and further consequences.