CVE-2016-4381

medium

HPE

CVSS v3 Base Score

4.5

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

EPSS Score

0.1%

Exploitation probability in 30 days

Top 80% most likely to be exploited

Attack Characteristics

Attack Vector

Local

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Confidentiality

Low

Integrity

Low

Availability

Low

Published: September 8, 2016 (3535 days ago)

Last Modified: May 6, 2026

Vendor: HPE

Source: NVD

Description

HPE XP7 Command View Advanced Edition (CVAE) Suite 6.x through 8.x before 8.4.1-02, when Replication Manager (RepMgr) and Device Manager (DevMgr) are enabled, allows local users to bypass intended access restrictions via unspecified vectors.

CWE

CWE-264

Affected Products

hp xp7 command view

References

🔗 www.securityfocus.com 🔗 h20566.www2.hpe.com 🔗 www.securityfocus.com 🔗 h20566.www2.hpe.com

CVE-2016-4381

Vulnerability Report

Description

CWE

Affected Products

References