8 matches found
CVE-2016-4405
A remote code execution vulnerability was identified in HP Business Service Management BSM using Apache Commons Collection Java Deserialization versions v9.20-v9.26...
Cross site scripting
A remote cross site scripting vulnerability has been identified in HP Business Service Management software v9.1x, v9.20 - v9.25IP1...
Remote code execution
A remote code execution vulnerability was identified in HP Business Service Management BSM using Apache Commons Collection Java Deserialization versions v9.20-v9.26...
CVE-2016-4405
A remote code execution vulnerability was identified in HP Business Service Management BSM using Apache Commons Collection Java Deserialization versions v9.20-v9.26...
CVE-2016-4392
A remote cross site scripting vulnerability has been identified in HP Business Service Management software v9.1x, v9.20 - v9.25IP1...
CVE-2012-2561
HP Business Service Management BSM 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444...
Code injection
HP Business Service Management BSM 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444...
CVE-2012-2561
HP Business Service Management BSM 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444...