8 matches found
CVE-2015-5406
HP CentralView products (Fraud Risk Management 11.1–11.3; Revenue Leakage Control 4.1–4.3; Dealer Performance Audit 2.0–2.1; Credit Risk Control 2.1–2.3; Roaming Fraud Control 2.1–2.3; Subscription Fraud Prevention 2.0–2.1) are affected by CVE-2015-5406/5407/5408, per HP’s security bulletin HPSBG...
CVE-2015-5407
CVE-2015-5407 affects HP CentralView Fraud Risk Management 11.1, 11.2, 11.3; CentralView Revenue Leakage Control 4.1–4.3; CentralView Dealer Performance Audit 2.0–2.1; CentralView Credit Risk Control 2.1–2.3; CentralView Roaming Fraud Control 2.1–2.3; CentralView Subscription Fraud Prevention 2.0...
CVE-2015-5408
HP CentralView vulnerability CVE-2015-5408 affects multiple CentralView components (Fraud Risk Management 11.1–11.3; Revenue Leakage Control 4.1–4.3; Dealer Performance Audit 2.0–2.1; Credit Risk Control 2.1–2.3; Roaming Fraud Control 2.1–2.3; Subscription Fraud Prevention 2.0–2.1). It enables re...
CVE-2018-7069
CVE-2018-7069 corresponds to a remote unauthenticated file-access vulnerability in HPE CentralView Fraud Risk Management versions earlier than CV 6.1. The issue allows unauthenticated remote access to files and is addressed in HF16 for HPE CV 6.1 or newer. Connected sources indicate the flaw affe...
CVE-2018-7070
The CVE-2018-7070 entry affects HPE CentralView Fraud Risk Management (older than CV 6.1). Root cause: remote information disclosure vulnerability. Impact: partial confidentiality loss via remote access vectors; no integrity/availability impact stated. Affected product versions: pre-6.1 CV; fixed...
CVE-2017-8992
HPE CentralView Fraud Risk Management is affected by CVE-2017-8992, a remote privilege escalation in versions earlier than CV 6.1. The vulnerability is addressed in HF16 for CV 6.1 or later. Connected sources (NVD, CNVD) describe an elevation-of-privilege condition that can be triggered remotely,...
CVE-2017-8991
The vulnerability CVE-2017-8991 affects HPE CentralView Fraud Risk Management versions earlier than 6.1. The issue is a cross-site scripting (XSS) flaw that could allow injection of arbitrary script in the web context. The fixed release is stated as HF16 for HPE CV 6.1 or a subsequent version . T...
CVE-2018-7068
CVE-2018-7068 is a remote HOST header attack affecting HPE CentralView Fraud Risk Management prior to version CV 6.1. The underlying issue is a HOST header handling vulnerability exposed in earlier builds. The affected line of exploitation is remote, and the issue is resolved in HF16 for HPE CV 6...