Operations Manager@* Security Vulnerabilities and Issues — Operations Manager@* CVE List

Lucene search

HpOperations Manager*

3 matches found

CVE•added 2009/12/03 5:30 p.m.•80 views

CVE-2009-4189

HP Operations Manager has a default password of OvW*busr1 for the ovwebusr account, which allows remote attackers to execute arbitrary code via a session that uses the manager role to conduct unrestricted file upload attacks against the /manager servlet in the Tomcat servlet container. NOTE: this m...

10CVSS7.5AI score0.86831EPSS

CVE•added 2016/08/01 2:59 a.m.•31 views

CVE-2016-4373

The AdminUI in HPE Operations Manager (OM) before 9.21.130 on Linux, Unix, and Solaris allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

9.8CVSS9.6AI score0.01835EPSS

CVE•added 2016/09/08 4:59 p.m.•26 views

CVE-2016-4380

Cross-site scripting (XSS) vulnerability in the AdminUI in HPE Operations Manager 9.21.x before 9.21.130 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

5.4CVSS5AI score0.0027EPSS