4 matches found
Command injection
Previous versions of HP Device Manager prior to HPDM 5.0.10 could potentially allow command injection and/or elevation of privileges...
CVE-2023-26296
The CVE-2023-26296 entry concerns HP Device Manager (HPDM) prior to version 5.0.10, where a command injection and/or elevation of privileges vulnerability is reported. The connected documents confirm the affected software is HPDM, and identify the underlying issue as a vulnerability in versions b...
HPSBGN03644 rev. 1 - HP Device Manager VNC Session Remote Unauthorized Access
Potential Security Impact Remote Unauthorized Access Source: HP, HP Product Security Response Team PSRT VULNERABILITY SUMMARY HP has identified an issue affecting VNC session security within HP Device Manager that could potentially be leveraged to create unauthorized connections. RESOLUTION HP is...
HPSBGN3547 rev.2 - HP Device Manager, Remote Read Access to Arbitrary Files
Potential Security Impact Remote read access to arbitrary files. Source: HP, HP Product Security Response Team PSRT VULNERABILITY SUMMARY Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote attackers to read arbitrary files via a .. dot dot in the...