17 matches found
CVE-2025-55443
Affected product: Telpo MDM Android, versions 1.4.6–1.4.9. Vulnerability: Sensitive administrator credentials and MQTT server connection details are stored in plaintext in log files on external storage, enabling access to the MDM web platform to perform administrative operations and to the MQTT s...
PT-2023-32689 · Smu · Smu
Name of the Vulnerable Software and Affected Versions: SMU versions prior to 14.8.7825.01 Description: The issue allows unintended information disclosure through URL manipulation. Authenticated users in Storage, Server, or combined Server+Storage administrative roles can access SMU configuration...
CVE-2016-8523
A Remote Arbitrary Code Execution vulnerability in HPE Smart Storage Administrator version before v2.60.18.0 was found...
CVE-2016-8523
A Remote Arbitrary Code Execution vulnerability in HPE Smart Storage Administrator version before v2.60.18.0 was found...
CVE-2016-8523
CVE-2016-8523 describes a remote code execution in HP/ Hewlett Packard Enterprise Smart Storage Administrator (SSA) prior to version 2.60.18.0. The root cause is a flaw in isDirectFileAccess (ipcelmclient.php) that allows an attacker–via a crafted HTTP request–to trigger a proc_open() path, enabl...
CVE-2016-8523
A Remote Arbitrary Code Execution vulnerability in HPE Smart Storage Administrator version before v2.60.18.0 was found...
HPE Smart Storage Administrator Code Execution (CVE-2016-8523)
A remote code execution vulnerability exists in HPE Smart Storage Administrator. A remote attacker could exploit this vulnerability by sending a crafted HTTP request to the vulnerable server. Successful exploitation could result in arbitrary code execution in the security context of the process...
HPE Smart Storage Administrator < 2.60.18.0 RCE
The version of HPE Smart Storage Administrator installed on the remote Windows host is prior to 2.60.18.0. It is, therefore, affected by a flaw in function isDirectFileAccess in file ipcelmclient.php due to improper sanitization of user-supplied input to the 'command' variable. An authenticated,...
HP Smart Storage Administrator command injection
Added: 02/16/2017 CVE: CVE-2016-8523 BID: 95868 Background HP Smart Storage Administrator HP SSA is a web-based application that helps an administrator configure, manage, diagnose, and monitor HP ProLiant Smart Array Controllers and other storage devices such as host bus adapters HBAs and HP...
HP Smart Storage Administrator command injection
Added: 02/16/2017 CVE: CVE-2016-8523 BID: 95868 Background HP Smart Storage Administrator HP SSA is a web-based application that helps an administrator configure, manage, diagnose, and monitor HP ProLiant Smart Array Controllers and other storage devices such as host bus adapters HBAs and HP...
HP Smart Storage Administrator command injection
Added: 02/16/2017 CVE: CVE-2016-8523 BID: 95868 Background HP Smart Storage Administrator HP SSA is a web-based application that helps an administrator configure, manage, diagnose, and monitor HP ProLiant Smart Array Controllers and other storage devices such as host bus adapters HBAs and HP...
HP Smart Storage Administrator Remote Code Execution Vulnerability
HP Smart Storage Administrator is a suite of storage configuration tools from Hewlett-Packard USA for performing complex tasks. A security vulnerability exists in HP Smart Storage Administrator that could be exploited by a remote attacker to submit a specific request to execute arbitrary code...
HP Smart Storage Administrator 2.30.6.0 Remote Command Injection
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "HP Smart Storage Administrator Remote Command Injection", 'Description' = %q This module exploits a vulnerability found in HP Smart...
HP Smart Storage Administrator 2.30.6.0 - Remote Command Injection (Metasploit)
HP Smart Storage Administrator 2.30.6.0 - Remote Command Injection Metasploit This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "HP Smart Storage Administrator Remote Command...
HP Smart Storage Administrator 2.30.6.0 - Remote Command Injection Exploit
Exploit for multiple platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "HP Smart Storage Administrator Remote Command Injection", 'Description' = ...
HP Smart Storage Administrator 2.30.6.0 - Remote Command Injection (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "HP Smart Storage Administrator Remote Command Injection", 'Description' = %q This module exploits a vulnerability found in HP Smart...
Veritas Software Volume Manager 3.0.2/3.0.3/3.0.4 File Permission Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1356/info A vulnerability exists in the Volume Manager product, versions 3.0.x, from Veritas Software. Volume Manager is a popular disk management package. Volume Manager running on Solaris platforms prior to Solaris 8 ar...