CVE-1999-1115
CVE-1999-1115 is a high-severity vulnerability in Hp Apollo Domain Os with a CVSS 2.0 base score of 7.2. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: High (CVSS 2.0 base score 7.2)
- EPSS exploit prediction: 1% (43rd percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Hp Apollo Domain Os
- Published:
- Last modified:
Description
Vulnerability in the /etc/suid_exec program in HP Apollo Domain/OS sr10.2 and sr10.3 beta, related to the Korn Shell (ksh).
Frequently asked questions
- What is CVE-1999-1115?
- Vulnerability in the /etc/suid_exec program in HP Apollo Domain/OS sr10.2 and sr10.3 beta, related to the Korn Shell (ksh).
- How severe is CVE-1999-1115?
- CVE-1999-1115 has a CVSS 2.0 base score of 7.2, rated high severity.
- Is CVE-1999-1115 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 1% (43rd percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-1999-1115?
- CVE-1999-1115 primarily affects Hp Apollo Domain Os. In total, 2 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-1999-1115?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-1999-1115 published?
- CVE-1999-1115 was published on 1990-12-31 and last updated on 2026-06-16.
References
- http://www.cert.org/advisories/CA-1990-04.html
- http://www.ciac.org/ciac/bulletins/a-30.shtml
- http://www.iss.net/security_center/static/6721.php
- http://www.securityfocus.com/bid/7
Affected products (2)
- cpe:2.3:o:hp:apollo_domain_os:*:beta:*:*:*:*:*:*
- cpe:2.3:o:hp:apollo_domain_os:sr10.2:*:*:*:*:*:*:*
More vulnerabilities in Hp Apollo Domain Os
- CVE-1999-1493 — Critical (CVSS 10.0): Vulnerability in crp in Hewlett Packard Apollo Domain OS SR10 through SR10.3 allows remote attackers to gain root…