CVE-2016-2004

Severity CVSS v4.0:
Pending analysis
Type:
CWE-306 Missing Authentication for Critical Function
Publication date:
21/04/2016
Last modified:
12/04/2025

Description

HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allow remote attackers to execute arbitrary code via unspecified vectors related to lack of authentication. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2623.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:hp:data_protector:*:*:*:*:*:*:*:* 7.0 (including) 7.03_108 (excluding)
cpe:2.3:a:hp:data_protector:*:*:*:*:*:*:*:* 8.0 (including) 8.15 (excluding)
cpe:2.3:a:hp:data_protector:*:*:*:*:*:*:*:* 9.0 (including) 9.06 (excluding)