CVE-2015-2137

critical

Published 2015-08-22 · Modified 2026-05-06

CVSS v3

—

CVSS v2

10.0

VIR risk

10.0

Description

Unspecified vulnerability in HP Operations Manager i (OMi) 9.22, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote attackers to execute arbitrary code via unknown vectors.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: hp-security-alert@hp.com — https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04762687

Application impact

Vendor	Product	Versions
hp	operations_manager_i	`9.22`
hp	operations_manager_i	`9.23`
hp	operations_manager_i	`9.24`
hp	operations_manager_i	`9.25`
hp	operations_manager_i	`10.00`
hp	operations_manager_i	`10.01`

References

http://www.securitytracker.com/id/1033260
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04762687
http://www.securitytracker.com/id/1033260
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04762687

Verify integrity in audit chain (admin only). AS-IS.