Vulnerabilities > Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')

DATE CVE VULNERABILITY TITLE RISK
2020-10-19 CVE-2020-7177 Expression Language Injection vulnerability in HP Intelligent Management Center
A wmiconfigcontent expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7176 Expression Language Injection vulnerability in HP Intelligent Management Center
A viewtaskresultdetailfact expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7175 Expression Language Injection vulnerability in HP Intelligent Management Center
A iccselectdymicparam expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7174 Expression Language Injection vulnerability in HP Intelligent Management Center
A soapconfigcontent expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7173 Expression Language Injection vulnerability in HP Intelligent Management Center
A actionselectcontent expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
8.8
8.8
2020-10-19 CVE-2020-7172 Expression Language Injection vulnerability in HP Intelligent Management Center
A templateselect expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
 9.8
9.8
2020-10-19 CVE-2020-7171 Expression Language Injection vulnerability in HP Intelligent Management Center
A guidatadetail expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
 9.8
9.8
2020-10-19 CVE-2020-7170 Expression Language Injection vulnerability in HP Intelligent Management Center
A select expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
 9.8
9.8
2020-10-19 CVE-2020-7169 Expression Language Injection vulnerability in HP Intelligent Management Center
A ictexpertcsvdownload expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
 9.8
9.8
2020-10-19 CVE-2020-7168 Expression Language Injection vulnerability in HP Intelligent Management Center
A selectusergroup expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
 9.8
9.8