2310 matches found
CVE-2015-3349
Multiple cross-site request forgery CSRF vulnerabilities in the Htaccess module before 7.x-2.3 for Drupal allow remote attackers to hijack the authentication of administrators for requests that 1 deploy or 2 delete an .htaccess file via unspecified vectors...
HP has multiple remote code execution vulnerabilities
HP Easy Deploy is an automated deployment tool. A remote code execution vulnerability exists in HP Easy Deploy distributed by HP Easy Tools on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620,t820 devices, which allows remote attackers to exploit...
Multiple Elevation of Privilege Vulnerabilities in HP
HP Easy Tools is a toolkit developed by Hewlett-Packard HP based on a wizard mode to guide the administrators of users in the financial industry for the initial installation and configuration of virtualization, easy and fast deployment. A security vulnerability exists in certain HP clients runnin...
CVE-2015-2113
Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620, and t820 devices allows remote attackers to execute arbitrary code via unknown...
CVE-2015-2112
Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620, and t820 devices allows remote authenticated users to execute arbitrary code via...
CVE-2015-2113
Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620, and t820 devices allows remote attackers to execute arbitrary code via unknown...
Code injection
Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620, and t820 devices allows remote authenticated users to execute arbitrary code via...
CVE-2015-2112
Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620, and t820 devices allows remote authenticated users to execute arbitrary code via...
Code injection
Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620, and t820 devices allows remote attackers to execute arbitrary code via unknown...
CVE-2015-2113
Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620, and t820 devices allows remote attackers to execute arbitrary code via unknown...
CVE-2015-2113
HP Easy Deploy in HP Easy Tools prior to 3.0.1.1650 on HP Thin Client t5540/t5740/t5740e and Flexible Thin Client t510/t520/t610/t620/t820 allows remote arbitrary-code execution and privilege escalation. Root cause vectors are not specified in the provided documents, but the security bulletin sta...
CVE-2015-2112
HP Easy Deploy on HP Thin Clients (Windows Embedded Standard 7/2009) prior to version 3.0.1.1650, bundled with HP Easy Tools, is affected. The CVE-2015-2112 entry corresponds to remote elevation of privilege and execution of code by remote, authenticated users via unknown vectors on devices: t554...
CVE-2015-2112
Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620, and t820 devices allows remote authenticated users to execute arbitrary code via...
[security bulletin] HPSBHF03310 rev.1 - HP Thin Clients running Windows Embedded Standard 7 (WES7) or Windows Embedded Standard 2009 (WES09) with HP Easy Deploy, Remote Elevation of Privilege, Execution of Code
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04629160 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04629160 Version: 1 HPSBHF03310 rev....
HPSBHF03310 rev.2 - HP Thin Clients running Windows Embedded Standard 7 (WES7) or Windows Embedded Standard 2009 (WES09) with HP Easy Deploy, Remote Elevation of Privilege, Execution of Code
Potential Security Impact Remote elevation of privilege, execution of code VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with certain HP Thin Clients running Windows Embedded Standard 7 WES7 and Windows Embedded Standard 2009 WES09 and all versions of HP Easy Deplo...
CVE-2014-6074
IBM UrbanCode Deploy 6.1.0.2 before IF1 allows remote authenticated users to read keystore secret keys via a direct request to a UI page...
Design/Logic Flaw
IBM UrbanCode Deploy 6.1.0.2 before IF1 allows remote authenticated users to read keystore secret keys via a direct request to a UI page...
CVE-2014-6074
IBM UrbanCode Deploy 6.1.0.2 before IF1 allows remote authenticated users to read keystore secret keys via a direct request to a UI page...
CVE-2014-6074
IBM UrbanCode Deploy 6.1.0.2 before IF1 is affected. The flaw allows remote authenticated users to read keystore secret keys via direct access to a UI page, potentially exposing all encrypted values and SSL communications between server and agents. The IBM security bulletin notes the affected pro...
DZS Video Gallery - deploy/preview_skin_overlay.swf logoLink Parameter Reflected XSS
The dzs-videogallery WordPress plugin was affected by a deploy/previewskinoverlay.swf logoLink Parameter Reflected XSS security vulnerability...