Executive Scorecard Security Vulnerabilities and Issues — Executive Scorecard CVE List

Lucene search

HpExecutive Scorecard

3 matches found

CVE•added 2014/06/19 10:50 a.m.•48 views

CVE-2014-2609

The Java Glassfish Admin Console in HP Executive Scorecard 9.40 and 9.41 does not require authentication, which allows remote attackers to execute arbitrary code via a session on TCP port 10001, aka ZDI-CAN-2116.

10CVSS7.9AI score0.2617EPSS

CVE•added 2014/06/19 10:50 a.m.•34 views

CVE-2014-2610

Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by uploading an executable file, aka ZDI-CAN-2117.

7.1CVSS7.5AI score0.01863EPSS

CVE•added 2014/06/19 10:50 a.m.•30 views

CVE-2014-2611

Directory traversal vulnerability in the fndwar web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code, or obtain sensitive information or delete data, via unspecified vectors, aka ZDI-CAN-2120.

9CVSS6.8AI score0.02581EPSS