virus logo Intrusion Prevention

HID.discoveryd.CommandBlinkOn.Unauth.Remote.Command.Execution

description-logoDescription

This indicates an attack attempt to exploit a Remote Command Execution vulnerability in HP Enterprise VAN SDN Controller.
The vulnerability is due to insufficient validation on user input when the vulnerable software handles a maliciously crafted request. A remote attacker may be able to exploit this to execute arbitrary command or code within the context of the application, via a crafted request.

affected-products-logoAffected Products

HID EDGEPlus E400 version 3.5.1.1483 and prior
HID EDGEPlus Solo ES400 version 3.5.1.1483 and prior
HID EDGE EVO EH400 version 3.5.1.1483 and prior
HID EDGE EVO Solo EHS400 version 3.5.1.1483 and prior
HID VertX EVO V2-V1000 version 3.5.1.1483 and prior
HID VertX EVO V2-V2000 version 3.5.1.1483 and prior
HID VertX Legacy V1000 version 2.2.7.568 and prior
HID VertX Legacy V2000 version 2.2.7.568 and prior

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor provided patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

16-223
ID 46450
Created Jul 19, 2018
Updated Aug 13, 2018
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Linux
Affected App Other