23 matches found
EUVD-2017-14878
Malware in sbrugna...
EUVD-2013-2312
Malware in sbrugna...
EUVD-2013-4649
Malware in sbrugna...
CVE-2013-2366
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors, aka ZDI-CAN-1802...
CVE-2013-4804
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors...
CVE-2017-5801
A Remote Unauthorized Access to Data vulnerability in HPE Business Process Monitor version v09.2x, v09.30 was found...
CVE-2017-5801
A Remote Unauthorized Access to Data vulnerability in HPE Business Process Monitor version v09.2x, v09.30 was found...
Design/Logic Flaw
A Remote Unauthorized Access to Data vulnerability in HPE Business Process Monitor version v09.2x, v09.30 was found...
CVE-2017-5801
CVE-2017-5801 is described across sources as a vulnerability in HPE Business Process Monitor (BPM) affecting v09.2x and v09.30, with indications of remote code execution/unauthorized data access. The connected documents cite an RCE/unauthorized access vector in BPM, but do not provide concrete te...
CVE-2017-5801
A Remote Unauthorized Access to Data vulnerability in HPE Business Process Monitor version v09.2x, v09.30 was found...
HP Business Process Monitor Remote Command Execution Vulnerability
HP Business Process Monitor is a suite of application monitoring software for monitoring business processes from Hewlett Packard Enterprise HPE. A remote code execution vulnerability exists in HPE Business Process Monitor. A remote attacker could exploit this vulnerability to execute arbitrary co...
[security bulletin] HPSBMU03044 rev.1 - HP Business Process Monitor, running OpenSSL, Remote Disclosure of Information
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04307186 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04307186 Version: 1 HPSBMU03044 rev....
HP Business Process Monitor tp_bpm_admin.exe Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Business Process Monitor. Authentication is not required to exploit this vulnerability. The specific flaw exists in the handling of requests to the tpbpmadmin.exe server which listens by default...
CVE-2013-4804
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors...
CVE-2013-2366
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors, aka ZDI-CAN-1802...
Code injection
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors...
Code injection
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors, aka ZDI-CAN-1802...
CVE-2013-2366
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors, aka ZDI-CAN-1802...
CVE-2013-4804
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors...
CVE-2013-2366
HP BPM vulnerability CVE-2013-2366 affects HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1. The root cause is a flaw in the tp_bpm_admin.exe server (listens on TCP port 2696) that allows remote code execution via a directory traversal in file upload handling. Exploitation is unauthent...