Critical severity9.8NVD Advisory· Published Apr 20, 2016· Updated May 6, 2026

CVE-2016-2003

Description

HPE P9000 Command View Advanced Edition Software (CVAE) 7.x and 8.x before 8.4.0-00 and XP7 CVAE 7.x and 8.x before 8.4.0-00 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

Affected products

HP/P9000 Command View Advanced Edition Software
cpe:2.3:a:hp:p9000_command_view_advanced_edition_software:-:*:*:*:*:*:*:*
HP/Xp7 Command View Advanced Edition Suite
cpe:2.3:a:hp:xp7_command_view_advanced_edition_suite:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000