Vulnerabilities > Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')

DATE CVE VULNERABILITY TITLE RISK
2020-10-19 CVE-2020-7152 Expression Language Injection vulnerability in HP Intelligent Management Center 7.2/7.3
A faultparasset expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7151 Expression Language Injection vulnerability in HP Intelligent Management Center 7.2/7.3
A faulttrapgroupselect expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7150 Expression Language Injection vulnerability in HP Intelligent Management Center 7.2/7.3
A faultstatchoosefaulttype expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7149 Expression Language Injection vulnerability in HP Intelligent Management Center 7.2/7.3
A ictexpertcsvdownload expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7148 Expression Language Injection vulnerability in HP Intelligent Management Center 7.2/7.3
A deployselectsoftware expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7147 Expression Language Injection vulnerability in HP Intelligent Management Center 7.2/7.3
A deployselectbootrom expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7146 Expression Language Injection vulnerability in HP Intelligent Management Center 7.2/7.3
A devgroupselect expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7145 Expression Language Injection vulnerability in HP Intelligent Management Center 7.2/7.3
A chooseperfview expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7144 Expression Language Injection vulnerability in HP Intelligent Management Center 7.2/7.3
A comparefilesresult expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7143 Expression Language Injection vulnerability in HP Intelligent Management Center 7.2/7.3
A faultdevparasset expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8