CVE-2015-2107

Published: Mar 14, 2015Modified: May 6, 2026

6.8

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Exploitability: 3.1 / Impact: 10.0

Source: NVD

Description

HP Operations Manager i Management Pack 1.x before 1.01 for SAP allows local users to execute OS commands by leveraging SAP administrative privileges.

Affected (1)

Products: Hp: Operations Manager I Management Pack

1 product

Operations Manager I Management Pack

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Operations Manager I Management Pack	Version 1.0

Running on/with	Platform Versions
Sap Netweaver	All versions

Related CWEs

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (4)

http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04588084

Source: hp-security-alert@hp.com

Vendor Advisory

http://www.securitytracker.com/id/1031870

Source: hp-security-alert@hp.com

http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04588084

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securitytracker.com/id/1031870

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.