CVE-2020-7189 Vulnerability Analysis & Exploit Details

CVE-2020-7189 Vulnerability Summary

CVE-2020-7189: A faultflasheventselectfact expression language injectionremote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).

Exploit Prediction Scoring System (EPSS)

The EPSS score estimates the probability that this vulnerability will be exploited in the near future.

EPSS Score: 0.205% (probability of exploit)

EPSS Percentile: 59.03% (lower percentile = lower relative risk)
This vulnerability is less risky than approximately 40.97% of others.

CVE-2020-7189 References

External References

• https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbnw04036en_us
• https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbnw04036en_us

CWE Common Weakness Enumeration

Vulnerable Configurations

• cpe:2.3:a:hp:intelligent_management_center:5.0:*:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.0:*:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:5.0:e0101:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.0:e0101:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:5.0:e0101h03:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.0:e0101h03:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:5.0:e0101h04:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.0:e0101h04:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:5.0:e0101l01:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.0:e0101l01:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:5.0:e0101l02:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.0:e0101l02:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:5.1:*:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.1:*:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:5.1:e0202:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.1:e0202:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:5.1:e0202:enterprise:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.1:e0202:enterprise:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:5.1:e0101p01:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.1:e0101p01:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:5.2:*:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:5.2:*:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.0:*:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.0:*:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.0:e02020p03:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.0:e02020p03:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.2:e0403:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.2:e0403:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.2:e0403l01:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.2:e0403l01:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.2:e0403l02:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.2:e0403l02:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.2:e0403l09:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.2:e0403l09:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.2:e0403p03:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.2:e0403p03:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.2:e0403p04:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.2:e0403p04:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.2:e0403p06:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.2:e0403p06:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.2:e0403p10:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.2:e0403p10:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:-:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:-:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0501:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0501:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0503:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0503:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0503p02:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0503p02:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0504:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0504:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0504p02:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0504p02:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0504p04:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0504p04:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0504p2:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0504p2:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0504p4:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0504p4:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0506:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0506:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p02:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p02:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p03:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p03:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p07:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p07:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p09:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0506p09:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0605:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0605:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h02:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h02:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h05:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h05:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h07:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h07:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h08:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h08:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h09:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0605h09:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0605p04:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0605p04:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0605p06:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0605p06:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0701:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0701:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0702:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0702:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0703:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0703:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0703h01:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0703h01:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0705:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0705:*:*:*:*:*:*
• cpe:2.3:a:hp:intelligent_management_center:7.3:e0705p02:*:*:*:*:*:*
  cpe:2.3:a:hp:intelligent_management_center:7.3:e0705p02:*:*:*:*:*:*

Other 5 Recently Published CVEs Vulnerabilities

• CVE-2025-2130 – A vulnerability was found in OpenXE up to 1.12. It has been declared as problematic. This vulnerability affects unknown code of the component Ticke...
• CVE-2025-26205 – Lua 5.4.7, when the debug library is used, has a out-of-bounds read and segmentation violation in mainpositionTV in ltable.c. NOTE: this is dispute...
• CVE-2025-26204 – Lua 5.4.7, when the debug library is used, has a out-of-bounds read and segmentation violation in equalkey in ltable.c. NOTE: this is disputed beca...
• CVE-2025-2129 – A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecur...
• CVE-2025-2127 – A vulnerability was found in JoomlaUX JUX Real Estate 3.4.0 on Joomla. It has been classified as problematic. Affected is an unknown function of th...