11 matches found
EUVD-2015-6798
Malware in sbrugna...
CVE-2017-8947
A Remote Code Execution vulnerability in HPE UCMDB version v10.10, v10.11, v10.20, v10.21, v10.22, v10.30, v10.31 was found...
CVE-2017-8947
A Remote Code Execution vulnerability in HPE UCMDB version v10.10, v10.11, v10.20, v10.21, v10.22, v10.30, v10.31 was found...
Remote code execution
A Remote Code Execution vulnerability in HPE UCMDB version v10.10, v10.11, v10.20, v10.21, v10.22, v10.30, v10.31 was found...
CVE-2017-8947
A Remote Code Execution vulnerability in HPE UCMDB version v10.10, v10.11, v10.20, v10.21, v10.22, v10.30, v10.31 was found...
CVE-2017-8947
The CVE-2017-8947 entry concerns Hewlett Packard Enterprise Universal CMDB (UCMDB). Reports confirm a remote code execution vulnerability in UCMDB where the UploadFileOnUIServerServlet handles user-supplied paths insecurely, enabling arbitrary code execution. Affected product versions include UCM...
HPE UCMDB 'UploadFileOnUIServerServlet' Servlet Path Handling RCE (HPESBGN03758)
The version of HP Universal Configuration Management Database Server UCMDB running on the remote web server is missing a security patch. It is, therefore, affected by a remote code execution vulnerability in the 'UploadFileOnUIServerServlet' servlet due to improper handling of user-supplied paths...
CVE-2015-6862
HPE UCMDB Browser before 4.02 allows remote attackers to obtain sensitive information or bypass intended access restrictions via unspecified vectors...
Information disclosure
HPE UCMDB Browser before 4.02 allows remote attackers to obtain sensitive information or bypass intended access restrictions via unspecified vectors...
CVE-2015-6862
HPE UCMDB Browser is affected by CVE-2015-6862. The vulnerability enables an information-disclosure/unauthorized access bypass in UCMDB Browser versions prior to 4.02 via unspecified vectors. Impact is exposure of sensitive data and potential bypass of access controls. The connected CNVD/NVD entr...
CVE-2015-6862
HPE UCMDB Browser before 4.02 allows remote attackers to obtain sensitive information or bypass intended access restrictions via unspecified vectors...