|CVSS SCORE||8.5, (AV:N/AC:L/Au:N/C:N/I:P/A:C)|
Hewlett Packard Enterprise
Moonshot Provisioning Manager
The specific flaw exists within the server_response.py file. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to overwrite any file accessible to the root user and create a denial-of-service condition.
Hewlett Packard Enterprise has issued an update to correct this vulnerability. More details can be found at: