10 matches found
CVE-2013-6220
HP Network Node Manager i (NNMi) versions 9.0, 9.10 and 9.20 are affected by a remote cross-site scripting (XSS) vulnerability (CVE-2013-6220) that could allow injection of script/HTML via unspecified vectors. HP/NNMi Security Bulletin HPSBMU03035_REV.1 documents the impact and provides hotfixes ...
Code injection
Unspecified vulnerability in HP Network Node Manager i NNMi 9.00, 9.1x, and 9.2x allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors...
CVE-2012-3279
Multiple cross-site scripting XSS vulnerabilities in HP Network Node Manager i NNMi 8.x, 9.0x, 9.1x, and 9.20 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-3279
HP NNMi affects NNMi v8.x and v9.0x/v9.1x/v9.20 across HP-UX, Linux, Solaris and Windows. The flaw is remote XSS via unspecified vectors allowing injection of arbitrary web script/HTML; CVSS 2.0 base 4.3 (AV:N/AC:M/Au:N/C:N/I:P/A:N). Remediation per HP security bulletin: upgrade to v9.0x/v9.1x/v...
CVE-2012-3275
CVE-2012-3275 affects HP Network Node Manager i (NNMi) 9.1x and 9.20 across HP-UX, Linux, Solaris, and Windows. The HP advisory notes a remote code execution possibility via unknown vectors, with CVSSv2 base score 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C). Remediation consists of platform-specific hotfixe...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in HP Network Node Manager i 9.10 allow remote attackers to inject arbitrary web script or HTML via the 1 node parameter to nnm/mibdiscover; 2 nodename parameter to nnm/protected/configurationpoll.jsp, 3 nnm/protected/ping.jsp, 4...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in HP Network Node Manager i NNMi 8.x, 9.0x, 9.1x, and 9.20 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-2018
HP NNMi is vulnerable to a remote Cross-Site Scripting (XSS) in NNMi versions 8.x, 9.0x and 9.1x, allowing injection of arbitrary scripts via unspecified vectors. The CVSS v2.0 base score is 4.3 (MEDIUM) with Network attack vector, no authentication required, but with partial integrity impact. HP...
CVE-2011-4155
CVE-2011-4155 is an XSS vulnerability reported for HP Network Node Manager i (NNMi) in 9.0x and 9.1x, enabling remote injection of arbitrary web script/HTML via unspecified vectors. Connected documents also describe related entries (CVE-2011-5184) with multiple XSS vectors in NNMi 9.10 (specific ...
Code injection
Unspecified vulnerability in HP Network Node Manager i NNMi 9.0x and 8.1x allows remote authenticated users to obtain sensitive information via unknown vectors...