CVE-2005-2773 Hewlett Packard (HP) CVE debrief

Who should care

Security teams, system administrators, and asset owners responsible for HP OpenView Network Node Manager, especially if any instances are legacy, broadly reachable, or difficult to patch quickly.

Technical summary

The supplied official records identify this issue as a remote code execution vulnerability in HP OpenView Network Node Manager and place it in CISA's Known Exploited Vulnerabilities catalog. The corpus does not provide affected version ranges, exploit mechanics, or a vendor advisory; the only remediation guidance included is CISA's note to apply updates per vendor instructions.

Defensive priority

Critical for any remaining deployments because it is a known-exploited remote code execution vulnerability.

Recommended defensive actions

• Apply vendor-recommended updates or mitigations immediately, per CISA KEV guidance.
• Inventory all HP OpenView Network Node Manager deployments, including legacy or forgotten instances.
• Prioritize internet-facing or broadly reachable management servers for remediation validation.
• If patching is unavailable or the product is end-of-life, isolate the system, restrict access, and plan replacement.
• Review recent logs and security alerts using your internal incident-response procedures for any signs of compromise.

Evidence notes

This debrief is based only on the supplied official CVE/NVD references and the CISA Known Exploited Vulnerabilities feed. The source corpus shows CISA added CVE-2005-2773 on 2022-03-25 with a due date of 2022-04-15 and the remediation note 'Apply updates per vendor instructions.' No affected-version matrix, exploit details, or vendor advisory text was provided.

Official resources