Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-2012
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-2012

2022-10-0316:15:37
[email protected]
web.nvd.nist.gov
74
hp
smh
cve-2012-2012
nvd
form authentication
remote attack

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.0%

JSON

HP System Management Homepage (SMH) before 7.1.1 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

Affected configurations

NVD
Node
hpsystem_management_homepageRange7.1.0-16
OR
hpsystem_management_homepageMatch2.0.0
OR
hpsystem_management_homepageMatch2.0.1
OR
hpsystem_management_homepageMatch2.0.1.104
OR
hpsystem_management_homepageMatch2.0.2
OR
hpsystem_management_homepageMatch2.0.2.106
OR
hpsystem_management_homepageMatch2.1
OR
hpsystem_management_homepageMatch2.1.0-103
OR
hpsystem_management_homepageMatch2.1.0-103\(a\)
OR
hpsystem_management_homepageMatch2.1.0-109
OR
hpsystem_management_homepageMatch2.1.0-118
OR
hpsystem_management_homepageMatch2.1.0.121
OR
hpsystem_management_homepageMatch2.1.1
OR
hpsystem_management_homepageMatch2.1.2
OR
hpsystem_management_homepageMatch2.1.2-127
OR
hpsystem_management_homepageMatch2.1.2.127
OR
hpsystem_management_homepageMatch2.1.3
OR
hpsystem_management_homepageMatch2.1.3.132
OR
hpsystem_management_homepageMatch2.1.4
OR
hpsystem_management_homepageMatch2.1.4-143
OR
hpsystem_management_homepageMatch2.1.4.143
OR
hpsystem_management_homepageMatch2.1.5
OR
hpsystem_management_homepageMatch2.1.5-146
OR
hpsystem_management_homepageMatch2.1.5.146
OR
hpsystem_management_homepageMatch2.1.5.146b
OR
hpsystem_management_homepageMatch2.1.6
OR
hpsystem_management_homepageMatch2.1.6-156
OR
hpsystem_management_homepageMatch2.1.6.156
OR
hpsystem_management_homepageMatch2.1.7
OR
hpsystem_management_homepageMatch2.1.7-168
OR
hpsystem_management_homepageMatch2.1.7.168
OR
hpsystem_management_homepageMatch2.1.8
OR
hpsystem_management_homepageMatch2.1.8-177
OR
hpsystem_management_homepageMatch2.1.8.179
OR
hpsystem_management_homepageMatch2.1.9
OR
hpsystem_management_homepageMatch2.1.9-178
OR
hpsystem_management_homepageMatch2.1.10
OR
hpsystem_management_homepageMatch2.1.10-186
OR
hpsystem_management_homepageMatch2.1.10.186
OR
hpsystem_management_homepageMatch2.1.10.186b
OR
hpsystem_management_homepageMatch2.1.10.186c
OR
hpsystem_management_homepageMatch2.1.11
OR
hpsystem_management_homepageMatch2.1.11-197
OR
hpsystem_management_homepageMatch2.1.11.197a
OR
hpsystem_management_homepageMatch2.1.12-118
OR
hpsystem_management_homepageMatch2.1.12-200
OR
hpsystem_management_homepageMatch2.1.12.201
OR
hpsystem_management_homepageMatch2.1.14
OR
hpsystem_management_homepageMatch2.1.14.20
OR
hpsystem_management_homepageMatch2.1.15
OR
hpsystem_management_homepageMatch2.1.15-210
OR
hpsystem_management_homepageMatch2.1.15.210
OR
hpsystem_management_homepageMatch2.2.6
OR
hpsystem_management_homepageMatch2.2.8
OR
hpsystem_management_homepageMatch3.0.0
OR
hpsystem_management_homepageMatch3.0.0-68
OR
hpsystem_management_homepageMatch3.0.0.64
OR
hpsystem_management_homepageMatch3.0.1
OR
hpsystem_management_homepageMatch3.0.1-73
OR
hpsystem_management_homepageMatch3.0.1.73
OR
hpsystem_management_homepageMatch3.0.2
OR
hpsystem_management_homepageMatch3.0.2-77
OR
hpsystem_management_homepageMatch3.0.2.77
OR
hpsystem_management_homepageMatch3.0.2.77b
OR
hpsystem_management_homepageMatch6.0
OR
hpsystem_management_homepageMatch6.0.0-95
OR
hpsystem_management_homepageMatch6.0.0.96
OR
hpsystem_management_homepageMatch6.1
OR
hpsystem_management_homepageMatch6.1.0-103
OR
hpsystem_management_homepageMatch6.1.0.102
OR
hpsystem_management_homepageMatch6.2.0
OR
hpsystem_management_homepageMatch6.2.2.7
OR
hpsystem_management_homepageMatch6.3.0
OR
hpsystem_management_homepageMatch6.3.1
OR
hpsystem_management_homepageMatch7.0
AND
linuxlinux_kernel
OR
microsoftwindows

Related

prion 1
cvelist 1
nvd 1
openvas 1
nessus 1
prion
prion
Design/Logic Flaw
2012-06-29 22:55:00
cvelist
cvelist
CVE-2012-2012
2022-10-03 16:15:37
nvd
nvd
CVE-2012-2012
2012-06-29 22:55:01
openvas
openvas
HP/HPE System Management Homepage (SMH) Multiple Vulnerabilities (HPSBMU02786)
2012-07-09 00:00:00
nessus
nessus
HP System Management Homepage < 7.1.1 Multiple Vulnerabilities
2012-07-05 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.0%

JSON
Related for CVE-2012-2012
prion1cvelist1nvd1openvas1nessus1