VYPR
Critical severity9.8NVD Advisory· Published May 30, 2016· Updated Jun 17, 2026

CVE-2016-1999

CVE-2016-1999

Description

The server in HP Release Control 9.13, 9.20, and 9.21 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library.

Affected products

4
  • cpe:2.3:a:hp:release_control:9.13:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:hp:release_control:9.13:*:*:*:*:*:*:*
    • cpe:2.3:a:hp:release_control:9.20:*:*:*:*:*:*:*
    • cpe:2.3:a:hp:release_control:9.21:*:*:*:*:*:*:*
  • Range: 9.13, 9.20, 9.21

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.