Lucene search
K

33 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-2674

Malware in sbrugna...

6.8CVSS6.4AI score0.00279EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-4658

Malware in sbrugna...

10CVSS6.2AI score0.08507EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2013-4654

Malware in sbrugna...

7.5CVSS6.2AI score0.03304EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/21 7:58 p.m.9 views

CVE-2009-2681

Unspecified vulnerability in HP ProCurve Identity Driven Manager IDM A.02.x through A.02.03 and A.03.x through A.03.00, on Windows Server 2003 with IAS and Windows Server 2008 with NPS, allows local users to gain privileges via unknown vectors...

6.8CVSS6.9AI score0.00279EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2024/01/10 11:30 a.m.25 views

Getting off the Attack Surface Hamster Wheel: Identity Can Help

IT professionals have developed a sophisticated understanding of the enterprise attack surface – what it is, how to quantify it and how to manage it. The process is simple: begin by thoroughly assessing the attack surface, encompassing the entire IT environment. Identify all potential entry and...

7.6AI score
Exploits0
CISA KEV Catalog
CISA KEV Catalog
added 2022/03/25 12:0 a.m.17 views

HP Multiple Products Remote Code Execution Vulnerability

HP ProCurve Manager PCM, PCM+, Identity Driven Manager IDM, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to 1 EJBInvokerServlet or 2 JMXInvokerServlet...

10CVSS7.4AI score0.79003EPSS
In wildExploits5
The Hacker News
The Hacker News
added 2019/11/07 12:9 p.m.68 views

Gartner Says the Future of Network Security Lies with SASE

Cloud services and networking are driving the concept of digital businesses, yet traditional networking and cybersecurity architectures are far from meeting the demands of the digital business. Gartner's "The Future of Network Security Is in the Cloud" report spells out the potential for the...

7.2AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2019/05/14 4:0 p.m.83 views

Executing on the vision of Microsoft Threat Protection

Over the last several months, we’ve provided regular updates on the rapid progress we’re making with Microsoft Threat Protection, which enables your organization to: Protect your assets with identity-driven security and powerful conditional access policies which ensure your assets are secured fro...

0.4AI score
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2016/03/25 12:0 a.m.8 views

VulnCheck KEV: CVE-2013-4810

HP ProCurve Manager PCM, PCM+, Identity Driven Manager IDM, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to 1 EJBInvokerServlet or 2 JMXInvokerServlet...

10CVSS6.4AI score0.79003EPSS
Exploits5References1
securityvulns
securityvulns
added 2014/01/08 12:0 a.m.200 views

[security bulletin] HPSBPV02918 rev.2 - HP ProCurve Manager (PCM), HP PCM+ and HP Identity Driven Manager (IDM), SQL Injection, Remote Code Execution, Session Reuse

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03897409 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03897409 Version: 2 HPSBPV02918 rev....

10CVSS9.9AI score0.79003EPSS
Exploits21
NVD
NVD
added 2013/09/16 1:1 p.m.41 views

CVE-2013-4810

HP ProCurve Manager PCM 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager IDM 4.0, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to 1 EJBInvokerServlet or 2 JMXInvokerServlet, aka ZDI-CAN-1760. NOTE: this is probably a duplica...

10CVSS7.5AI score0.79003EPSS
Exploits5References8
NVD
NVD
added 2013/09/16 1:1 p.m.28 views

CVE-2013-4813

The Agent aka AgentController servlet in HP ProCurve Manager PCM 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager IDM 4.0 allows remote attackers to execute arbitrary commands via a HEAD request, aka ZDI-CAN-1745...

10CVSS7.5AI score0.08507EPSS
Exploits0References4
Prion
Prion
added 2013/09/16 1:1 p.m.23 views

Design/Logic Flaw

UpdateCertificatesServlet in the SNAC registration server in HP ProCurve Manager PCM 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager IDM 4.0 does not properly validate the fileName argument, which allows remote attackers to upload .jsp files and consequently execute arbitrary code vi...

10CVSS8.1AI score0.51903EPSS
Exploits10References4Affected Software2
Prion
Prion
added 2013/09/16 1:1 p.m.24 views

Sql injection

Multiple SQL injection vulnerabilities in GetEventsServlet in HP ProCurve Manager PCM 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager IDM 4.0 allow remote attackers to execute arbitrary SQL commands via the 1 sort or 2 dir parameter...

7.5CVSS9.2AI score0.03304EPSS
Exploits0References4Affected Software2
Prion
Prion
added 2013/09/16 1:1 p.m.26 views

Design/Logic Flaw

UpdateDomainControllerServlet in the SNAC registration server in HP ProCurve Manager PCM 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager IDM 4.0 does not properly validate the adCert argument, which allows remote attackers to upload .jsp files and consequently execute arbitrary code...

10CVSS8.2AI score0.71293EPSS
Exploits6References4Affected Software2
ATTACKERKB
ATTACKERKB
added 2013/09/16 12:0 a.m.665 views

CVE-2013-4810

HP ProCurve Manager PCM 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager IDM 4.0, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to 1 EJBInvokerServlet or 2 JMXInvokerServlet, aka ZDI-CAN-1760. NOTE: this is probably a duplica...

10CVSS6.3AI score0.81832EPSS
In wildExploits38References13
Cvelist
Cvelist
added 2013/09/13 6:0 p.m.62 views

CVE-2013-4811

UpdateDomainControllerServlet in the SNAC registration server in HP ProCurve Manager PCM 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager IDM 4.0 does not properly validate the adCert argument, which allows remote attackers to upload .jsp files and consequently execute arbitrary code...

7.5AI score0.71293EPSS
Exploits6References4
Cvelist
Cvelist
added 2013/09/13 6:0 p.m.33 views

CVE-2013-4809

Multiple SQL injection vulnerabilities in GetEventsServlet in HP ProCurve Manager PCM 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager IDM 4.0 allow remote attackers to execute arbitrary SQL commands via the 1 sort or 2 dir parameter...

8.4AI score0.03304EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2013/09/13 6:0 p.m.12 views

CVE-2013-4810

HP ProCurve Manager PCM 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager IDM 4.0, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to 1 EJBInvokerServlet or 2 JMXInvokerServlet, aka ZDI-CAN-1760. NOTE: this is probably a duplica...

7.8AI score0.79003EPSS
Exploits5References7
Cvelist
Cvelist
added 2013/09/13 6:0 p.m.33 views

CVE-2013-4813

The Agent aka AgentController servlet in HP ProCurve Manager PCM 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager IDM 4.0 allows remote attackers to execute arbitrary commands via a HEAD request, aka ZDI-CAN-1745...

7.5AI score0.08507EPSS
Exploits0References4
Rows per page
Query Builder