Openview Performance Insight Security Vulnerabilities and Issues — Openview Performance Insight CVE List

Lucene search

HpOpenview Performance Insight

5 matches found

CVE•added 2010/03/10 10:30 p.m.•45 views

CVE-2010-0447

The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate and validate requests, which allows remote attackers to execute arbitrary commands via vectors involving upload of a JSP document.

10CVSS7.7AI score0.08094EPSS

CVE•added 2011/02/02 1:0 a.m.•42 views

CVE-2011-0276

HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote attackers to execute arbitrary code via the doPost method in the com.trinagy.servlet.HelpManagerServlet class.

10CVSS7.6AI score0.85731EPSS

CVE•added 2011/08/19 5:55 p.m.•38 views

CVE-2011-2410

Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.7AI score0.00623EPSS

CVE•added 2011/08/11 10:55 p.m.•31 views

CVE-2011-2406

Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

3.5CVSS5.3AI score0.00217EPSS

CVE•added 2011/08/11 10:55 p.m.•31 views

CVE-2011-2407

Unspecified vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote attackers to obtain access via unknown vectors.

6.4CVSS6.6AI score0.0205EPSS