Lucene search
K

5 matches found

Zero Day Initiative
Zero Day Initiative
added 2013/09/11 12:0 a.m.37 views

HP PCM+ SNAC Registration Server UpdateCertificatesServlet Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP PCM Plus. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UpdateCertificatesServlet. This servlet improperly sanitizes the 'fileName' argument...

10CVSS4.1AI score0.51903EPSS
Exploits10References1
Zero Day Initiative
Zero Day Initiative
added 2013/09/11 12:0 a.m.32 views

HP PCM+ AgentController Servlet Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP PCM Plus. Authentication is not required to exploit this vulnerability. The specific flaws exist within the Agent servlet. This servlet is vulnerable to a command injection vulnerability when...

10CVSS3.9AI score0.08507EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2013/09/11 12:0 a.m.32 views

HP PCM+ GetEventsServlet SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP PCM Plus. Authentication is not required to exploit this vulnerability. The specific flaw exists within the GetEventsServlet. This servlet contains a SQL injection vulnerability in the sort and...

10CVSS3.2AI score0.03304EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2013/09/11 12:0 a.m.35 views

HP PCM+ SNAC Registration Server UpdateDomainControllerServlet Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP PCM Plus. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UpdateDomainControllerServlet. This servlet improperly sanitizes the 'adCert' argument...

10CVSS6.5AI score0.71293EPSS
Exploits6
Zero Day Initiative
Zero Day Initiative
added 2013/09/11 12:0 a.m.67 views

HP PCM+ and Application Lifecycle Management JBoss Invoker Servlets Marshalled Object Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP PCM Plus and Application Lifecycle Management. Authentication is not required to exploit this vulnerability. The specific flaw exists within the exposed EJBInvokerServlet and JMXInvokerServlet. ...

10CVSS5AI score0.79003EPSS
Exploits5References2
Rows per page
Query Builder