CVE-2017-12557

CRITICAL

HPE Intelligent Management Center < 7.3 - Remote Code Execution via Untrusted Data Deserialization

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2017-12557. PoCs published by Metasploit, Steven Seeley (mr_me) of Offensive Security, including Metasploit module exploits/windows/http/hp_imc_java_deserialize.

AI-analyzed exploit summary This Metasploit module exploits a Java deserialization vulnerability in HPE Intelligent Management Center (IMC) via the WebDMDebugServlet, allowing unauthenticated remote code execution (RCE) as SYSTEM. It uses a crafted serialized payload (ysoserial JSON1) to trigger arbitrary code execution.

Description

A Remote Code Execution vulnerability in HPE intelligent Management Center (iMC) PLAT version IMC Plat 7.3 E0504P2 and earlier was found.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/45952

This Metasploit module exploits a Java deserialization vulnerability in HPE Intelligent Management Center (IMC) via the WebDMDebugServlet, allowing unauthenticated remote code execution (RCE) as SYSTEM. It uses a crafted serialized payload (ysoserial JSON1) to trigger arbitrary code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HPE Intelligent Management Center 7.3 E0504P2 and earlier
No auth needed
Prerequisites: Network access to TCP ports 8080 or 8443 · Vulnerable HPE IMC instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by Steven Seeley (mr_me) of Offensive Security · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hp_imc_java_deserialize.rb

This is a Metasploit module exploiting a Java deserialization vulnerability in HP Intelligent Management Center (IMC) via the WebDMDebugServlet. It allows unauthenticated remote code execution (RCE) by sending a malicious serialized payload to TCP ports 8080 or 8443.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HPE IMC 7.3 E0504P2 and earlier
No auth needed
Prerequisites: Network access to TCP ports 8080 or 8443 · Vulnerable version of HPE IMC
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/101152
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1039495
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45952/

Scores

CVSS v3 9.8
EPSS 0.8586
EPSS Percentile 99.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-502
Status published
Products (2)
hp/intelligent_management_center 7.3 e0504p2
hp/intelligent_management_center < 7.3
Published Feb 15, 2018
Tracked Since Feb 18, 2026