The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate and validate requests, which allows remote attackers to execute arbitrary commands via vectors involving upload of a JSP document.

"HP OpenView Performance Insight (OVPI) 5.4及更早版本中的帮助管理器Servlet 未正确验证和认证请求，这允许远程攻击者通过涉及 JSP 文档上传的向量执行任意命令。"

NVD 暂无评分

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

NVD 暂无漏洞类别信息

神龙GPT 暂无漏洞类别信息（请耐心等待）