6.8 Medium
AI Score
Confidence
Low
9 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.02 Low
EPSS
Percentile
88.7%
Directory traversal vulnerability in the fndwar web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code, or obtain sensitive information or delete data, via unspecified vectors, aka ZDI-CAN-2120.
CPE | Name | Operator | Version |
---|---|---|---|
hp:executive_scorecard | hp executive scorecard | eq | 9.40 |
hp:executive_scorecard | hp executive scorecard | eq | 9.41 |