KLA10458Multiple vulnerabilities in HP SMH

2014-01-10T00:00:00
ID KLA10458
Type kaspersky
Reporter Kaspersky Lab
Modified 2019-03-07T00:00:00

Description

Detect date:

01/10/2014

Severity:

Critical

Description:

Multiple vulnerabilities was found in HP SMH. By exploiting these vulnerabilities malicious users can conduct XSS, CSRF and clicjacking attacks via unspecified vectors. These vulnerabilities can be exploited remotely.

Affected products:

HP System Management Homepage (SMH) versions earlier than 7.4

Solution:

Update to latest version
Get HP SMH

Original advisories:

HP bulletin

Impacts:

XSSCSS

Related products:

HP System Management Homepage

CVE-IDS:

CVE-2013-67125.0Critical
CVE-2013-64224.0Critical
CVE-2014-26416.0Critical
CVE-2014-26404.3Critical
CVE-2014-26424.3Critical
CVE-2013-64207.5Critical
CVE-2013-45454.3Critical