Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
HpSystem Management Homepage2.1.2-127

20 matches found

CVE
CVEadded 2011/04/29 10:55 p.m.154 views

CVE-2011-1541

Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote attackers to bypass intended access restrictions, and consequently execute arbitrary code, via unknown vectors.

10CVSS7.4AI score0.06143EPSS
CVE
CVEadded 2012/06/29 10:55 p.m.104 views

CVE-2012-2012

HP System Management Homepage (SMH) before 7.1.1 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

10CVSS6.8AI score0.04477EPSS
CVE
CVEadded 2012/06/29 10:55 p.m.95 views

CVE-2012-2013

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.1.1 allows remote attackers to cause a denial of service, or possibly obtain sensitive information or modify data, via unknown vectors.

7.5CVSS7.2AI score0.01302EPSS
CVE
CVEadded 2011/04/29 10:55 p.m.81 views

CVE-2011-1540

Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote authenticated users to execute arbitrary code via unknown vectors.

9CVSS7.4AI score0.00451EPSS
CVE
CVEadded 2012/06/29 10:55 p.m.72 views

CVE-2012-2015

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.1.1 allows remote authenticated users to gain privileges and obtain sensitive information via unknown vectors.

9CVSS6.2AI score0.0025EPSS
CVE
CVEadded 2010/04/28 10:30 p.m.71 views

CVE-2010-1586

Open redirect vulnerability in red2301.html in HP System Management Homepage (SMH) 2.x.x.x allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the RedirectUrl parameter.

4.3CVSS6.8AI score0.00657EPSS
CVE
CVEadded 2010/09/24 7:0 p.m.69 views

CVE-2010-3284

Unspecified vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to obtain sensitive information via unknown vectors.

4.3CVSS6.2AI score0.00594EPSS
CVE
CVEadded 2010/09/24 7:0 p.m.66 views

CVE-2010-3283

Open redirect vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

4.3CVSS6.7AI score0.00391EPSS
CVE
CVEadded 2009/05/19 7:30 p.m.54 views

CVE-2009-1418

Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 3.0.1.73 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.7AI score0.00594EPSS
CVE
CVEadded 2012/06/29 10:55 p.m.54 views

CVE-2012-2014

HP System Management Homepage (SMH) before 7.1.1 does not properly validate input, which allows remote authenticated users to have an unspecified impact via unknown vectors.

9CVSS6.5AI score0.0025EPSS
CVE
CVEadded 2013/09/23 10:18 a.m.53 views

CVE-2013-4821

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors.

4CVSS6.2AI score0.00275EPSS
CVE
CVEadded 2012/04/18 10:33 a.m.51 views

CVE-2012-0135

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows remote authenticated users to cause a denial of service via unknown vectors.

3.5CVSS6.3AI score0.00243EPSS
CVE
CVEadded 2012/04/18 10:33 a.m.51 views

CVE-2012-1993

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows local users to modify data or obtain sensitive information via unknown vectors.

3.2CVSS5.9AI score0.00076EPSS
CVE
CVEadded 2010/02/05 10:30 p.m.50 views

CVE-2009-4185

Cross-site scripting (XSS) vulnerability in proxy/smhui/getuiinfo in HP System Management Homepage (SMH) before 6.0 allows remote attackers to inject arbitrary web script or HTML via the servercert parameter.

4.3CVSS5.8AI score0.00644EPSS
CVE
CVEadded 2010/09/17 8:0 p.m.49 views

CVE-2010-3012

Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this issue was originally assigned CVE-2010-3010 due to a CNA error.

4.3CVSS5.6AI score0.0076EPSS
CVE
CVEadded 2010/09/17 6:0 p.m.48 views

CVE-2010-3011

CRLF injection vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

5CVSS7AI score0.00601EPSS
CVE
CVEadded 2014/03/14 10:55 a.m.47 views

CVE-2013-4846

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.3 allows remote attackers to obtain sensitive information via unknown vectors.

5CVSS6.1AI score0.00647EPSS
CVE
CVEadded 2012/06/29 10:55 p.m.46 views

CVE-2012-2016

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.1.1 allows local users to obtain sensitive information via unknown vectors.

4.9CVSS5.8AI score0.00145EPSS
CVE
CVEadded 2008/10/13 8:0 p.m.43 views

CVE-2008-4411

Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 2.1.15.210 on Linux and Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2008-1663.

4.3CVSS5.5AI score0.00387EPSS
CVE
CVEadded 2008/11/04 6:29 p.m.40 views

CVE-2008-4413

Unspecified vulnerability in HP System Management Homepage (SMH) 2.2.6 and earlier on HP-UX B.11.11 and B.11.23, and SMH 2.2.6 and 2.2.8 and earlier on HP-UX B.11.23 and B.11.31, allows local users to gain "unauthorized access" via unknown vectors, possibly related to temporary file permissions.

6.2CVSS6.5AI score0.00051EPSS