virus logo Intrusion Prevention

HPE.IMC.ForwardRedirect.Expression.Language.Injection

description-logoDescription

This indicates an attack attempt to exploit an Expression Language Injection Vulnerability in HP Intelligent Management Center.
This vulnerability is due to insufficient handling of HTTP request parameters. Successful exploitation results in the execution of arbitrary code on the target system with privileges of SYSTEM user

affected-products-logoAffected Products

HP Intelligent Management Center

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

HP has not released an advisory or patch regarding this vulnerability.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-04-06 15.811 Default_action:pass:drop
2020-03-26 15.805
ID 48815
Created Mar 26, 2020
Updated Mar 31, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows, Linux
Affected App HP