| CVE-2011-1867 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in iNodeMngChecker.exe in the User Access Manager (UAM) 5.0 before SP1 E0101P03 and Endpoint Admission Defense (EAD) 5.0 before SP1 E0101P03 components in HP Intelligent M… |
| CVE-2011-2608 |
medium |
— |
6.4 |
|
|
hp |
15y ago |
ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers … |
| CVE-2011-1866 |
critical |
— |
10.0 |
EXP |
|
hp |
15y ago |
Buffer overflow in omniinet.exe in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to execute arbitrary code via a crafted request, related to the EXE… |
| CVE-2011-1865 |
critical |
— |
10.0 |
EXP |
|
hp |
15y ago |
Multiple stack-based buffer overflows in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allow remote attackers to execute arbitrary code via a request containing crafted par… |
| CVE-2011-1515 |
medium |
— |
5.0 |
|
|
hp |
15y ago |
The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (daemon exit) via a request containing crafted parameters. |
| CVE-2011-1514 |
medium |
— |
5.0 |
|
|
hp |
15y ago |
The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request containing craf… |
| CVE-2011-1864 |
critical |
— |
9.3 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2011-1862 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Cross-site scripting (XSS) vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vecto… |
| CVE-2011-1860 |
medium |
— |
5.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to capture HTTP session credentials via unknown vectors. |
| CVE-2011-1859 |
medium |
— |
5.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to obtain sensitive information via unknown vectors. |
| CVE-2011-1858 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows local users to bypass intended access restrictions via unknown vectors. |
| CVE-2011-2331 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Integer overflow in img.exe in HP Intelligent Management Center (IMC) allows remote attackers to execute arbitrary code via a crafted length value in an a packet that triggers a heap-based buffer ove… |
| CVE-2011-2328 |
medium |
— |
6.8 |
|
|
hp |
15y ago |
Buffer overflow in HP LoadRunner allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a .usr (aka Virtual User script) file with long directives. |
| CVE-2011-1856 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 8.06 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2011-1855 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x allows local users to read or modify (1) log files or (2) other data via unknown vectors. |
| CVE-2011-1854 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Use-after-free vulnerability in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a long syslog packet, related to an exception handler. |
| CVE-2011-1853 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a (1) large or (2) invalid opcode field, related to a function point… |
| CVE-2011-1852 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Multiple stack-based buffer overflows in tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allow remote attackers to execute arbitrary code via crafted packet content accom… |
| CVE-2011-1851 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a long mode field. |
| CVE-2011-1850 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in the logging functionality in dbman.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via vectors relat… |
| CVE-2011-1849 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to create or overwrite files, and subsequently execute arbitrary code, via a crafted WRQ request. |
| CVE-2011-1848 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in img.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a crafted length field in a packet. |
| CVE-2011-1735 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed b… |
| CVE-2011-1734 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed o… |
| CVE-2011-1733 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed H… |
| CVE-2011-1732 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed s… |
| CVE-2011-1731 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed E… |
| CVE-2011-1730 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed E… |
| CVE-2011-1729 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed G… |
| CVE-2011-1728 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed E… |
| CVE-2011-1727 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Cross-site scripting (XSS) vulnerability in HP SiteScope 9.54, 10.13, 11.01, and 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to an "HTML injec… |
| CVE-2011-1726 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Cross-site scripting (XSS) vulnerability in HP SiteScope 9.54, 10.13, 11.01, and 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2011-1724 |
medium |
— |
6.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Virtual Server Environment before 6.3 allows remote authenticated users to gain privileges via unknown vectors. |
| CVE-2011-1545 |
medium |
— |
6.8 |
|
|
hp |
15y ago |
Cross-site request forgery (CSRF) vulnerability in HP Insight Control Performance Management before 6.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. |
| CVE-2011-1544 |
medium |
— |
6.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Insight Control Performance Management before 6.3 allows remote authenticated users to gain privileges via unknown vectors. |
| CVE-2011-1539 |
medium |
— |
5.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote attackers to obtain sensitive information via unknown vectors. |
| CVE-2011-1538 |
medium |
— |
4.9 |
|
|
hp |
15y ago |
Open redirect vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote authenticated users to redirect other users to arbitrary web sites and conduct phishing attacks via unspecified … |
| CVE-2011-1537 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Cross-site scripting (XSS) vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2011-1543 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Cross-site request forgery (CSRF) vulnerability in HP Systems Insight Manager (SIM) before 6.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. |
| CVE-2011-1542 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 6.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2011-1541 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote attackers to bypass intended access restrictions, and consequently execute arbitrary code, via unknown vector… |
| CVE-2011-1540 |
critical |
— |
9.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote authenticated users to execute arbitrary code via unknown vectors. |
| CVE-2011-1536 |
medium |
— |
5.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Performance Insight 5.0, 5.1x. 5.2x, 5.3x, 5.4, 5.41, and 5.41.002 allows remote attackers to obtain sensitive information via unknown vectors. |
| CVE-2011-1535 |
medium |
— |
6.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Insight Control for Linux (aka IC-Linux) before 6.3 allows remote authenticated users to obtain sensitive information, modify data, or cause a denial of service via un… |
| CVE-2011-1725 |
medium |
— |
5.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to obtain sensitive information via unknown vectors. |
| CVE-2011-1534 |
medium |
— |
6.5 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x allows remote authenticated users to obtain access to processes via unknown vectors. |
| CVE-2011-0898 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Cross-site scripting (XSS) vulnerability in HP Network Node Manager i (NNMi) 9.00 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2011-0897 |
medium |
— |
4.6 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.00 allows local users to read arbitrary files via unknown vectors. |
| CVE-2011-0896 |
medium |
— |
6.8 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP NFS/ONCplus B.11.31.10 and earlier on HP-UX B.11.31 allows remote authenticated users to cause a denial of service via unknown vectors. |
| CVE-2011-0895 |
medium |
— |
4.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x and 8.1x allows remote authenticated users to obtain sensitive information via unknown vectors. |
| CVE-2011-0894 |
medium |
— |
5.5 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Operations 9.10 on UNIX platforms allows remote authenticated users to bypass intended access restrictions via unknown vectors. |
| CVE-2011-0893 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Cross-site scripting (XSS) vulnerability in HP Operations 9.10 on UNIX platforms allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2011-0892 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Cross-site scripting (XSS) vulnerability in HP Diagnostics 7.5x and 8.0x before 8.05.54.225 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. |
| CVE-2011-0890 |
medium |
— |
5.0 |
|
|
hp |
15y ago |
HP Discovery & Dependency Mapping Inventory (DDMI) 7.50, 7.51, 7.60, 7.61, 7.70, and 9.30 launches the Windows SNMP service with its default configuration, which allows remote attackers to obtain pot… |
| CVE-2011-0889 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Client Automation Enterprise (aka HPCA or Radia Notify) 5.11, 7.2, 7.5, 7.8, and 7.9 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2011-0280 |
medium |
— |
4.3 |
|
|
hp |
15y ago |
Multiple cross-site scripting (XSS) vulnerabilities in HP Power Manager (HPPM) 4.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the logType parameter to Content… |
| CVE-2011-0279 |
low |
— |
2.1 |
|
|
hp |
16y ago |
HP Multifunction Peripheral (MFP) Digital Sending Software (DSS) 4.91.00 does not properly configure authentication settings of managed devices within device templates, which allows attackers to acce… |
| CVE-2011-0278 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Web Jetadmin 10.2 Service Release 3 and 4 allows local users to bypass intended access restrictions via unknown vectors. |
| CVE-2011-0924 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
The client in HP Data Protector does not verify the contents of files associated with the EXEC_CMD command, which allows remote attackers to execute arbitrary script code by providing this code with … |
| CVE-2011-0923 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory." |
| CVE-2011-0922 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
The client in HP Data Protector allows remote attackers to execute arbitrary programs via an EXEC_SETUP command that references a UNC share pathname. |
| CVE-2011-0921 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
crs.exe in the Cell Manager Service in the client in HP Data Protector does not properly validate credentials associated with the hostname, domain, and username, which allows remote attackers to exec… |
| CVE-2011-0277 |
medium |
— |
6.8 |
|
|
hp |
16y ago |
Cross-site request forgery (CSRF) vulnerability in HP Power Manager (HPPM) 4.3.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that create new admini… |
| CVE-2011-0276 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote attackers to execute arbitr… |
| CVE-2011-0273 |
critical |
— |
9.3 |
|
|
hp |
16y ago |
Buffer overflow in crs.exe in HP OpenView Storage Data Protector Cell Manager 6.11 allows remote attackers to execute arbitrary code via unspecified message types. |
| CVE-2011-0274 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 7.x through 7.55 and 8.x through 8.05, and Business Service Management (BSM) through 9.01, allows remote attackers to… |
| CVE-2011-0514 |
medium |
— |
6.0 |
EXP |
|
hp |
16y ago |
The RDS service (rds.exe) in HP Data Protector Manager 6.11 allows remote attackers to cause a denial of service (crash) via a packet with a large data size to TCP port 1530. |
| CVE-2011-0272 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP LoadRunner 9.52 allows remote attackers to execute arbitrary code via network traffic to TCP port 5001 or 5002, related to the HttpTunnel feature. |
| CVE-2011-0271 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
The CGI scripts in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 do not properly validate an unspecified parameter, which allows remote attackers to execute arbitrary commands by using a co… |
| CVE-2011-0270 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Format string vulnerability in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via format string specifiers in input data… |
| CVE-2011-0269 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long schd_select1 parameter. |
| CVE-2011-0268 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long text1 parameter. |
| CVE-2011-0267 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams p… |
| CVE-2011-0266 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long nameParams parameter, a different vulnerabi… |
| CVE-2011-0265 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long data_select1 parameter. |
| CVE-2011-0264 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Stack-based buffer overflow in ovutil.dll in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long COOKIE variable. |
| CVE-2011-0263 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Multiple stack-based buffer overflows in ovas.exe in the OVAS service in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) Source… |
| CVE-2011-0262 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Buffer overflow in the stringToSeconds function in ovutil.dll in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via larg… |
| CVE-2011-0261 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in jovgraph.exe in jovgraph in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a malformed displayWidth option … |
| CVE-2010-4114 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP Discovery & Dependency Mapping Inventory (DDMI) 2.5x, 7.5x, and 7.6x allows remote attackers to inject arbitrary web script or HTML via unspecified vect… |
| CVE-2010-4113 |
critical |
— |
9.3 |
|
|
hp |
16y ago |
Stack-based buffer overflow in HP Power Manager (HPPM) before 4.3.2 allows remote attackers to execute arbitrary code via a long Login variable to the management web server. |
| CVE-2010-4112 |
medium |
— |
5.0 |
|
|
hp |
16y ago |
HP Insight Management Agents before 8.6 allows remote attackers to obtain sensitive information via an unspecified request that triggers disclosure of the full path. |
| CVE-2010-4111 |
medium |
— |
5.3 |
EXP |
linux-kernel |
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP Insight Diagnostics Online Edition before 8.5.1.3712 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-4116 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP StorageWorks Storage Mirroring 5.x before 5.2.2.1771.2 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2010-4115 |
critical |
— |
9.0 |
|
|
hp |
16y ago |
HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011, TS100R025, TS100P002, TS200R005, TS201R014, and TS201R015 installs an undocumented admin account with a default "!admin" password, whi… |
| CVE-2010-4106 |
medium |
— |
6.8 |
|
|
hp |
16y ago |
Cross-site request forgery (CSRF) vulnerability in HP Insight Control for Linux before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. |
| CVE-2010-4105 |
medium |
— |
6.4 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Orchestration before 6.2 allows remote attackers to bypass intended access restrictions, and obtain sensitive information or modify data, via unknown vectors. |
| CVE-2010-4104 |
medium |
— |
5.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Orchestration before 6.2 allows remote attackers to read arbitrary files via unknown vectors. |
| CVE-2010-4103 |
medium |
— |
5.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Managed System Setup Wizard before 6.2 allows remote attackers to read arbitrary files via unknown vectors. |
| CVE-2010-4102 |
medium |
— |
5.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Recovery before 6.2 allows remote attackers to read arbitrary files via unknown vectors. |
| CVE-2010-4101 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP Insight Recovery before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-4100 |
medium |
— |
5.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Control Performance Management before 6.1 update 2 allows remote attackers to read arbitrary files via unknown vectors. |
| CVE-2010-4032 |
medium |
— |
6.8 |
|
|
hp |
16y ago |
Cross-site request forgery (CSRF) vulnerability in HP Insight Control Performance Management before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. |
| CVE-2010-4030 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP Insight Control Performance Management before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-4024 |
medium |
— |
6.8 |
|
|
hp |
16y ago |
Cross-site request forgery (CSRF) vulnerability in HP Insight Control Power Management before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. |
| CVE-2010-4023 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP Insight Control Power Management before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-3994 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP Version Control Repository Manager (VCRM) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-3993 |
medium |
— |
6.4 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Control Server Migration before 6.2 allows remote attackers to obtain sensitive information or modify data via unknown vectors. |
| CVE-2010-3992 |
critical |
— |
9.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Control Server Migration before 6.2 allows remote authenticated users to gain privileges via unknown vectors. |
| CVE-2010-3991 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP Insight Control Server Migration before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
