2 matches found
CVE-2009-2899
The CVE-2009-2899 entry concerns SpringSource Hyperic HQ (pre-4.3) where a monitor Perl script in the Sybase plug‑in allows local users to obtain the database password by listing the process and its arguments. Affected component: Hyperic HQ monitor script; root cause: information disclosure via p...
CVE-2013-6366
CVE-2013-6366 affects VMware Hyperic HQ 4.6.6 via the Groovy script console. The vulnerability allows remote authenticated administrators to execute arbitrary code through a Runtime.getRuntime().exec call. Root cause: insecure Groovy console exposure enabling code execution. Impact: arbitrary cod...