CVE-2016-1997 (operations_orchestration, operations_orchestration_content)
HPE Operations Orchestration 10.x before 10.51 and Operations Orchestration content before 1.7.0 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library.
Source: CVE-2016-1997 (operations_orchestration, operations_orchestration_content)