2 matches found
[security bulletin] HPSBGN02951 rev.1 - HP Operations Orchestration, Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04041093 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04041093 Version: 1 HPSBGN02951 rev....
CVE-2013-6192
HP Operations Orchestration is affected by CVE-2013-6192 through CSRF in versions earlier than 9, which could allow remote attackers to hijack user sessions via unknown vectors. The vulnerability is documented with a base CVSS-like impact as partial impact to confidentiality, integrity, and avail...