Vulnerabilities > Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')

DATE CVE VULNERABILITY TITLE RISK
2020-10-19 CVE-2020-7187 Expression Language Injection vulnerability in HP Intelligent Management Center
A reportpage index expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7186 Expression Language Injection vulnerability in HP Intelligent Management Center
A powershellconfigcontent expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7185 Expression Language Injection vulnerability in HP Intelligent Management Center
A tvxlanlegend expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7184 Expression Language Injection vulnerability in HP Intelligent Management Center
A viewbatchtaskresultdetailfact expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7183 Expression Language Injection vulnerability in HP Intelligent Management Center
A forwardredirect expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7182 Expression Language Injection vulnerability in HP Intelligent Management Center
A sshconfig expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7181 Expression Language Injection vulnerability in HP Intelligent Management Center
A smsrulesdownload expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7180 Expression Language Injection vulnerability in HP Intelligent Management Center
A ictexpertdownload expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7179 Expression Language Injection vulnerability in HP Intelligent Management Center
A thirdpartyperfselecttask expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7178 Expression Language Injection vulnerability in HP Intelligent Management Center
A mediaforaction expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8