CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site request forgery CSRF vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS7.5AI score0.00128EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 1:8 a.m.•5 views

CVE-2010-1036

Cross-site scripting XSS vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.00534EPSS

Exploits0References1

Metasploit•added 2021/03/09 5:42 p.m.•76 views

HPE Systems Insight Manager AMF Deserialization RCE

A remotely exploitable vulnerability exists within HPE System Insight Manager SIM version 7.6.x that can be leveraged by a remote unauthenticated attacker to execute code within the context of HPE System Insight Manager's hpsimsvc.exe process, which runs with administrative privileges. The...

9.8CVSS9.6AI score0.8554EPSS

Exploits4

0day.today•added 2021/03/09 12:0 a.m.•54 views

HPE Systems Insight Manager AMF Deserialization Remote Code Execution Exploit

9.8CVSS10AI score0.8554EPSS

Exploits4

Packet Storm•added 2021/03/09 12:0 a.m.•977 views

HPE Systems Insight Manager AMF Deserialization Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HPE Systems Insight Manager AMF Deserialization RCE', 'Description' = %q A remotely exploitable vulnerability exists within HPE System Insight...

7.5CVSS0.8AI score0.8554EPSS

Exploits4

OSV•added 2016/06/08 2:59 p.m.•0 views

CVE-2016-2018

HPE Systems Insight Manager SIM before 7.5.1 allows remote attackers to obtain sensitive information or modify data via unspecified vectors...

9.1CVSS5.8AI score

Exploits0References3

securityvulns•added 2010/04/30 12:0 a.m.•30 views

HP System Insight Manager multiple security vulnerabilities

Crossite scripting, crossite request forgery, privilege escalation...

6.8CVSS1.3AI score0.00828EPSS

Exploits0References1

securityvulns•added 2010/04/30 12:0 a.m.•94 views

[security bulletin] HPSBMA02525 SSRT100083 rev.1 - HP System Insight Manager Running on HP-UX, Linux, and Windows , Remote Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF), Privilege Elevation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02027185 Version: 1 HPSBMA02525 SSRT100083 rev.1 - HP System Insight Manager Running on HP-UX, Linux, and Windows , Remote Cross Site Scripting XSS, Cross Site Request Forgery CSRF, Privilege...

6.8CVSS0.3AI score0.00828EPSS

Exploits0

Prion•added 2010/04/28 10:30 p.m.•15 views

Code injection

Unspecified vulnerability in HP System Insight Manager before 6.0 allows remote authenticated users to gain privileges via unknown vectors...

6.5CVSS6.9AI score0.00319EPSS

Exploits0References4Affected Software1

NVD•added 2010/04/28 10:30 p.m.•15 views

CVE-2010-1036

Cross-site scripting XSS vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.00534EPSS

Exploits0References4

Prion•added 2010/04/28 10:30 p.m.•15 views

Cross site scripting

Cross-site scripting XSS vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.00534EPSS

Exploits0References4Affected Software1

NVD•added 2010/04/28 10:30 p.m.•17 views

CVE-2010-1037

Cross-site request forgery CSRF vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS7AI score0.00128EPSS

Exploits0References4

Prion•added 2010/04/28 10:30 p.m.•12 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS7.6AI score0.00128EPSS

Exploits0References4Affected Software1

NVD•added 2010/04/28 10:30 p.m.•17 views

CVE-2010-1038

Unspecified vulnerability in HP System Insight Manager before 6.0 allows remote authenticated users to gain privileges via unknown vectors...

6.5CVSS6.4AI score0.00319EPSS

Exploits0References4

CVE•added 2010/04/28 10:0 p.m.•45 views

CVE-2010-1036

HP System Insight Manager (HP SIM) before 6.0 contains CVE-2010-1036, a remote XSS that lets an attacker inject arbitrary web script or HTML via unspecified vectors. The HP security bulletin HPSBMA02525 recommends upgrading to HP SIM 6.0 or later; CVSS v2 base score is cited as 6.8 (AV:N/AC:M/Au:...

4.3CVSS5.8AI score0.00534EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by