Lucene search
K

6 matches found

Check Point Advisories
Check Point Advisories
added 2014/11/04 12:0 a.m.4 views

HP System Management Homepage red2301.html RedirectUrl Cross Site Scripting (CVE-2014-2640)

A cross-site scripting vulnerability exists in HP's System Management Homepage SMH. The vulnerability is due to an input validation error when handling 'RedirectUrl' parameter of red2301.html page. A remote attacker could exploit this vulnerability by enticing a target user to follow a malicious...

4.3CVSS1AI score0.03884EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/10/08 12:0 a.m.148 views

HP System Management Homepage < 7.4 Multiple Vulnerabilities

According to the web server's banner, the version of HP System Management Homepage SMH hosted on the remote web server is affected by the following vulnerabilities : - A flaw exists within the included cURL that disables the 'CURLOPTSSLVERIFYHOST' check when the setting on 'CURLOPTSSLVERIFYPEER' ...

7.5CVSS7.7AI score0.35635EPSS
Exploits8References9
securityvulns
securityvulns
added 2014/10/05 12:0 a.m.207 views

[security bulletin] HPSBMU03112 rev.1 - HP System Management Homepage &#40;SMH&#41; on Linux and Windows, Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04463322 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04463322 Version: 1 HPSBMU03112 rev....

7.5CVSS0.4AI score0.35635EPSS
Exploits8
NVD
NVD
added 2014/10/02 12:55 a.m.15 views

CVE-2014-2640

Cross-site scripting XSS vulnerability in HP System Management Homepage SMH before 7.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.6AI score0.03884EPSS
Exploits0References3
CVE
CVE
added 2014/10/02 12:0 a.m.62 views

CVE-2014-2640

HP System Management Homepage (SMH) is affected by CVE-2014-2640, a cross-site scripting (XSS) vulnerability in SMH before version 7.4. The issue is tied to input handling of the RedirectUrl parameter in red2301.html, enabling remote attackers to inject arbitrary script via specially crafted link...

4.3CVSS5.6AI score0.03884EPSS
Exploits0References3Affected Software1
Kaspersky
Kaspersky
added 2014/01/10 12:0 a.m.144 views

KLA10458 Multiple vulnerabilities in HP SMH

Multiple vulnerabilities was found in HP SMH. By exploiting these vulnerabilities malicious users can conduct XSS, CSRF and clicjacking attacks via unspecified vectors. These vulnerabilities can be exploited remotely. Original advisories HP bulletin Related products HP-System-Management-Homepage...

7.5CVSS7.4AI score0.35635EPSS
Exploits8References3
Rows per page
Query Builder