12 matches found
CVE-2011-1857
CVE-2011-1857 affects HP Service Manager v7.02, v7.11, v9.20, v9.21 and HP Service Center v6.2.8. The issue allows remote authenticated users to bypass access restrictions via unspecified vectors. The CVSS v2 base score is 8.2 (High) with network access, medium complexity, single authentication, ...
CVE-2013-4808
CVE-2013-4808 affects HP Service Manager (versions 7.11, 9.21, 9.30, 9.31) and HP Service Center 6.2.8. The HP Security Bulletin reports a potential for remote unauthenticated access and elevation of privilege. Base CVSS v2.0 vector is AV:N/AC:L/Au:N/C:P/I:P/A:P with a base score of 7.5. Remediat...
CVE-2011-1859
CVE-2011-1859 affects HP Service Manager (versions 7.02, 7.11, 9.20, 9.21) and HP Service Center 6.2.8. The HP Security Bulletin SEC-HP (HPSBMA02674) documents remote disclosure of privileged information and related flaws (including unauthorized remote access) in the Web Tier/Web components, with...
CVE-2011-1863
CVE-2011-1863 concerns HP Service Manager (versions 7.02, 7.11, 9.20, 9.21) and HP Service Center (v6.2.8). The connected documents confirm a remote-authenticated script-injection vulnerability affecting the Web/Web Tier components, with HP’s Security Bulletin detailing multiple related CVEs and ...
CVE-2013-4844
HP Service Manager (versions 7.11, 9.21, 9.30, 9.31, 9.32) and HP ServiceCenter 6.2.8 are affected by a remote code execution vulnerability (CVE-2013-4844). The HP security bulletin HPSBGN02942 rev.1 indicates the issue could be exploited remotely to execute arbitrary code via unknown vectors, wi...
CVE-2011-1862
CVE-2011-1862 is an XSS vulnerability in HP Service Manager (versions 7.02, 7.11, 9.20, 9.21) and HP Service Center 6.2.8. The underlying issue is a cross-site scripting flaw allowing injection of arbitrary web script/HTML via unspecified vectors. The HP security bulletin HPSBMA02674 rev.1 docume...
CVE-2013-2336
CVE-2013-2336 affects HP Service Manager (versions 7.11, 9.21, 9.30, 9.31) and HP ServiceCenter 6.2.8. The vulnerability enables remote attackers to obtain sensitive information via unspecified vectors. The HP Security Bulletin HPSBMU02884 rev.1 lists two related issues (one being CVE-2013-2336) ...
CVE-2011-1860
CVE-2011-1860 affects HP Service Manager (versions 7.02, 7.11, 9.20, 9.21) and HP Service Center 6.2.8. The vulnerability enables remote attackers to capture HTTP session credentials, via unspecified vectors, with a CVSSv2 base score of 5.0 (Network, Low complexity, no authentication, partial con...
CVE-2013-2337
CVE-2013-2337 is an XSS vulnerability in HP Service Manager (versions 7.11, 9.21, 9.30, 9.31) and HP ServiceCenter 6.2.8. It allows remote injection of arbitrary web script/HTML via unspecified vectors, potentially enabling information disclosure. Connected documents confirm affected products and...
CVE-2011-1861
The CVE-2011-1861 entry concerns HP Service Manager (versions 7.02, 7.11, 9.20, 9.21) and HP Service Center 6.2.8. The connected HP security bulletin documents the vulnerabilities as enabling unauthorized remote access and related issues, with CVSS v2 base score 8.3 (high) and impact to confident...
CVE-2011-1858
HP Service Manager and HP Service Center are affected by multiple vulnerabilities including CVE-2011-1858 (Unsecured Local Access) that allow local users to bypass access restrictions. Affected versions: SM 9.21, 9.20, 7.11, 7.02 and SC 6.2.8. The HP Security Bulletin HPSBMA02674 rev.1 documents ...
CVE-2012-5214
HP ServiceCenter 6.2.8 before 6.2.8.10 is affected by CVE-2012-5214, enabling remote attackers to obtain sensitive information, modify data, or cause DoS via unknown vectors. HP’s security bulletin HPSBMU02849/SSRT101124 rev.1 discloses affected platforms and provides 6.2.8.10 as the fix (and pat...