Lucene search
HistoryAug 23, 2014 - 11:55 p.m.
CVE-2014-2633
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.1 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.3%
Cross-site request forgery (CSRF) vulnerability in the server in HP Service Manager (SM) 7.21 and 9.x before 9.34 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Affected configurations
Node
hpservice_managerMatch7.21
ORhpservice_managerMatch9.21
ORhpservice_managerMatch9.30
ORhpservice_managerMatch9.31
ORhpservice_managerMatch9.32
ORhpservice_managerMatch9.33
Related
cve
cve
CVE-2014-2633
2014-08-23 23:55:04
prion
prion
Cross site request forgery (csrf)
2014-08-23 23:55:00
cvelist
cvelist
CVE-2014-2633
2014-08-23 23:00:00
securityvulns
securityvulns
[security bulletin] HPSBMU03079 rev.1 - HP Service Manager, Multiple Vulnerabilities
2014-08-26 00:00:00
HP Service Manager multiple security vulnerabilities
2014-08-26 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.1 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.3%
Related for NVD:CVE-2014-2633