Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-2003
HistoryMay 02, 2012 - 10:55 p.m.

CVE-2012-2003

2012-05-0222:55:02
CWE-352
[email protected]
web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.3%

JSON

Cross-site request forgery (CSRF) vulnerability in HP Insight Management Agents before 9.0.0.0 on Windows Server 2003 and 2008 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Affected configurations

NVD
Node
hpinsight_management_agentsRange8.70.0.0b
OR
hpinsight_management_agentsMatch6.30.0.0
OR
hpinsight_management_agentsMatch6.31.0.0b
OR
hpinsight_management_agentsMatch6.40.0.0
OR
hpinsight_management_agentsMatch7.0.0.0
OR
hpinsight_management_agentsMatch7.10.0.0
OR
hpinsight_management_agentsMatch7.20.0.0
OR
hpinsight_management_agentsMatch7.30.0.0
OR
hpinsight_management_agentsMatch7.40.0.0
OR
hpinsight_management_agentsMatch7.40.1.0
OR
hpinsight_management_agentsMatch7.41.0.0
OR
hpinsight_management_agentsMatch7.50.0.0
OR
hpinsight_management_agentsMatch7.51.0.0
OR
hpinsight_management_agentsMatch7.60.0.0
OR
hpinsight_management_agentsMatch7.70.0.0
OR
hpinsight_management_agentsMatch7.80.0.0
OR
hpinsight_management_agentsMatch7.90.0.0
OR
hpinsight_management_agentsMatch7.91.0.0
OR
hpinsight_management_agentsMatch7.95.0.0
OR
hpinsight_management_agentsMatch8.0.0.0
OR
hpinsight_management_agentsMatch8.1.0.0
OR
hpinsight_management_agentsMatch8.5
OR
hpinsight_management_agentsMatch8.10.0.0
OR
hpinsight_management_agentsMatch8.11.0.0
OR
hpinsight_management_agentsMatch8.15.0.0
OR
hpinsight_management_agentsMatch8.20.0.0
OR
hpinsight_management_agentsMatch8.22.0.0
OR
hpinsight_management_agentsMatch8.26.0.0
OR
hpinsight_management_agentsMatch8.30.0.0
OR
hpinsight_management_agentsMatch8.40.0.0
OR
hpinsight_management_agentsMatch8.50.0.0
OR
hpinsight_management_agentsMatch8.60.0.0
OR
hpinsight_management_agentsMatch8.70.0.0
AND
microsoftwindows_2003_server
OR
microsoftwindows_server_2003
OR
microsoftwindows_server_2008Match-
OR
microsoftwindows_server_2008Match-x64

Related

cvelist 1
cve 1
prion 1
securityvulns 2
nessus 1
cvelist
cvelist
CVE-2012-2003
2012-05-02 22:00:00
cve
cve
CVE-2012-2003
2012-05-02 22:55:02
prion
prion
Cross site request forgery (csrf)
2012-05-02 22:55:00
securityvulns
securityvulns
[security bulletin] HPSBMU02770 SSRT100848 rev.1 - HP Insight Management Agents for Windows Server, Remote Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS), URL Redirection, Unauthorized Modification, Denial of Service
2012-05-10 00:00:00
HP Insight Management Agents multiple security vulnerabilities
2012-05-10 00:00:00
nessus
nessus
HP Insight Management Agents Multiple Vulnerabilities
2012-05-09 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.3%

JSON
Related for NVD:CVE-2012-2003
cvelist1cve1prion1securityvulns2nessus1