Critical severity9.8NVD Advisory· Published Jul 15, 2016· Updated May 6, 2026

CVE-2016-4372

Description

HPE iMC PLAT before 7.2 E0403P04, iMC EAD before 7.2 E0405P05, iMC APM before 7.2 E0401P04, iMC NTA before 7.2 E0401P01, iMC BIMS before 7.2 E0402P02, and iMC UAM_TAM before 7.2 E0405P05 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

Affected products

HP/Intelligent Management Center Application Performance Manager
cpe:2.3:a:hp:intelligent_management_center_application_performance_manager:*:*:*:*:*:*:*:*
Range: <=7.2
HP/Intelligent Management Center Branch Intelligent Management System
cpe:2.3:a:hp:intelligent_management_center_branch_intelligent_management_system:*:*:*:*:*:*:*:*
Range: <=7.2
HP/Intelligent Management Center Endpoint Admission Defense
cpe:2.3:a:hp:intelligent_management_center_endpoint_admission_defense:*:*:*:*:*:*:*:*
Range: <=7.2
HP/Intelligent Management Center Network Traffic Analyzer
cpe:2.3:a:hp:intelligent_management_center_network_traffic_analyzer:*:*:*:*:*:*:*:*
Range: <=7.2
HP/Intelligent Management Center Platform
cpe:2.3:a:hp:intelligent_management_center_platform:*:*:*:*:*:*:*:*
Range: <=7.2
HP/Intelligent Management Center User Access Management
cpe:2.3:a:hp:intelligent_management_center_user_access_management:*:*:*:*:*:*:*:*
Range: <=7.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdVendor Advisory
www.securityfocus.com/bid/91739nvd
www.exploit-db.com/exploits/42756/nvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.008
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000