CVE-2017-8961

A directory traversal vulnerability in HPE Intelligent Management Center (IMC) PLAT 7.3 E0504P02 could allow remote code execution.

Basic Information

CVE State: PUBLISHED
Reserved Date: May 15, 2017
Published Date: February 15, 2018
Last Updated: September 16, 2024
Vendor: Hewlett Packard Enterprise
Product: Intelligent Management Center
Description: A directory traversal vulnerability in HPE Intelligent Management Center (IMC) PLAT 7.3 E0504P02 could allow remote code execution.

CVSS Scores

CVSS v3.0

8.8 - HIGH

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2.0

9.0

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

EPSS Score

Score: 67.23% (Percentile: 98.46%) as of 2025-06-01

Exploit Status

Exploited in the Wild: Yes (added 2025-05-12 00:00:00 UTC) Source

References

https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03788en_us http://www.securitytracker.com/id/1039702

Known Exploited Vulnerability Information

Source	Added Date
The Shadowserver (via CIRCL)	2025-05-12 00:00:00 UTC

Timeline

CVE ID Reserved

May 15, 2017
CVE Published to Public

February 15, 2018
Added to KEVIntel

May 12, 2025