CVE-2016-2000 (asset_manager, asset_manager_cloudsystem_chargeback)
HPE Asset Manager 9.40, 9.41, and 9.50 and Asset Manager CloudSystem Chargeback 9.40 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Source: CVE-2016-2000 (asset_manager, asset_manager_cloudsystem_chargeback)