87 matches found
HP UCMDB Foundation Software Directory Traversal Vulnerability
HP UCMDB Foundation Software is able to provide users with bottom-up capabilities that include four parts: infrastructure auto-discovery, data modeling, service mapping definition and service impact analysis. A directory traversal vulnerability exists in HP UCMDB Foundation Software, which could...
HP UCMDB Foundation Software Cross-Site Scripting Vulnerability
HP UCMDB Foundation Software is able to provide users with bottom-up capabilities that include four parts: infrastructure auto-discovery, data modeling, service mapping definition and service impact analysis. A cross-site scripting vulnerability exists in HP UCMDB Foundation Software, which could...
HP UCMDB Foundation Software Remote Code Execution Vulnerability
HP UCMDB Foundation Software is able to provide users with bottom-up including infrastructure auto-discovery, data modeling, service mapping definition and service impact analysis of four parts of the function. A security vulnerability exists in HP UCMDB Foundation Software that could be exploite...
HP UCMDB Server BeanUtils Java Deserialization RCE
The HP Universal Configuration Management Database UCMDB Server running on the remote host is affected by a remote code execution vulnerability due to unsafe deserialize calls of unauthenticated Java objects to the Apache Commons BeanUtils library. An unauthenticated, remote attacker can exploit...
Cross site scripting
A remote cross-site scripting vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33 could be remotely exploited to allow cross-site scripting...
CVE-2017-14354
A remote cross-site scripting vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33 could be remotely exploited to allow cross-site scripting...
CVE-2017-14353
A remote code execution vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33, could be remotely exploited to allow code execution...
CVE-2017-14354
A remote cross-site scripting vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33 could be remotely exploited to allow cross-site scripting...
Remote code execution
A remote code execution vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33, could be remotely exploited to allow code execution...
CVE-2017-14354
HP UCMDB Foundation Software versions 10.10–10.33 are affected by a remote cross-site scripting vulnerability (CVE-2017-14354). The NVD entry describes remote XSS with medium severity (CVSS v3 base 6.1) and provides affected version ranges. Connected OpenVAS content also references remote XSS and...
CVE-2017-14353
CVE-2017-14353 describes a remote code execution vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33. Connected sources indicate the issue is due to unsafe Java object deserialization via Apache Commons BeanUtils in the HPE/UCMD...
CVE-2017-14354
A remote cross-site scripting vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33 could be remotely exploited to allow cross-site scripting...
CVE-2017-14353
A remote code execution vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33, could be remotely exploited to allow code execution...
CVE-2017-14352
A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.23. These vulnerabilities could be remotely exploited to allow cross-site scripting...
CVE-2017-14352
A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.23. These vulnerabilities could be remotely exploited to allow cross-site scripting...
CVE-2017-14351
A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.23. These vulnerabilities could be remotely exploited to allow code execution...
Design/Logic Flaw
A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.23. These vulnerabilities could be remotely exploited to allow code execution...
Cross site scripting
A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.23. These vulnerabilities could be remotely exploited to allow cross-site scripting...
CVE-2017-14351
HP UCMDB Configuration Manager (versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.23) is listed as affected by a vulnerability that could allow remote code execution. The provided sources state the possibility of remote exploitation but do not include concrete exploit details or remediation steps. T...
CVE-2017-14352
HP UCMDB Configuration Manager (HPE UCMDB) applications versions 10.10–10.23 are affected by a cross-site scripting vulnerability. The CVE-2017-14352 entry notes remote exploitation could allow script execution in a user’s browser. CVSSv3 vectors indicate NETWORK access, LOW attack complexity, PR...