Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
service manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-2633
Cross-site request forgery (CSRF) vulnerability in the server in HP Service Manager (SM) 7.21 and 9.x prior to 9.34 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Hp Service Manager 9.30
Hp Service Manager 9.21
Hp Service Manager 7.21
Hp Service Manager 9.32
Hp Service Manager 9.31
Hp Service Manager 9.33
NA
CVE-2013-4844
Unspecified vulnerability in HP Service Manager 7.11, 9.21, 9.30, 9.31, and 9.32, and ServiceCenter 6.2.8, allows remote malicious users to execute arbitrary code via unknown vectors.
Hp Service Manager 9.21
Hp Service Manager 9.31
Hp Service Manager 7.11
Hp Service Manager 9.30
Hp Service Manager 9.32
Hp Service Center 6.2.8
4.2
CVSSv3
CVE-2016-7815
Remote Service Manager 3.0.0 to 3.1.4 fails to verify client certificates, which may allow remote malicious users to gain access to systems on the network.
Cybozu Remote Service Manager 3.0.0
Cybozu Remote Service Manager 3.0.1
Cybozu Remote Service Manager 3.1.0
Cybozu Remote Service Manager 3.1.2
Cybozu Remote Service Manager 3.1.4
Cybozu Remote Service Manager 3.1.1
Cybozu Remote Service Manager 3.1.3
8.2
CVSSv3
CVE-2017-3284
Vulnerability in the Oracle Service Fulfillment Manager component of Oracle E-Business Suite (subcomponent: User Interface). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated...
Oracle Service Fulfillment Manager 12.2.3
Oracle Service Fulfillment Manager 12.2.6
Oracle Service Fulfillment Manager 12.1.3
Oracle Service Fulfillment Manager 12.1.1
Oracle Service Fulfillment Manager 12.2.5
Oracle Service Fulfillment Manager 12.1.2
Oracle Service Fulfillment Manager 12.2.4
8.2
CVSSv3
CVE-2017-3285
Vulnerability in the Oracle Service Fulfillment Manager component of Oracle E-Business Suite (subcomponent: User Interface). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated...
Oracle Service Fulfillment Manager 12.1.3
Oracle Service Fulfillment Manager 12.1.1
Oracle Service Fulfillment Manager 12.1.2
Oracle Service Fulfillment Manager 12.2.5
Oracle Service Fulfillment Manager 12.2.4
Oracle Service Fulfillment Manager 12.2.3
Oracle Service Fulfillment Manager 12.2.6
NA
CVE-2013-6202
Multiple cross-site request forgery (CSRF) vulnerabilities in HP Service Manager 9.30, 9.31, 9.32, and 9.33 allow remote malicious users to hijack the authentication of unspecified victims for requests that (1) insert XSS sequences or (2) execute arbitrary code.
Hp Service Manager 9.33
Hp Service Manager 9.30
Hp Service Manager 9.31
Hp Service Manager 9.32
NA
CVE-2013-2337
Cross-site scripting (XSS) vulnerability in HP Service Manager 7.11, 9.21, 9.30, and 9.31, and ServiceCenter 6.2.8, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Hp Service Manager 7.11
Hp Service Manager 9.21
Hp Service Manager 9.30
Hp Service Manager 9.31
Hp Service Center 6.2.8
NA
CVE-2011-1857
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote authenticated users to bypass intended access restrictions via unknown vectors.
Hp Service Manager 9.20
Hp Service Manager 9.21
Hp Service Center 6.2.8
Hp Service Manager 7.02
Hp Service Manager 7.11
NA
CVE-2011-1858
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows local users to bypass intended access restrictions via unknown vectors.
Hp Service Manager 7.11
Hp Service Center 6.2.8
Hp Service Manager 9.21
Hp Service Manager 7.02
Hp Service Manager 9.20
NA
CVE-2011-1860
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote malicious users to capture HTTP session credentials via unknown vectors.
Hp Service Manager 9.21
Hp Service Manager 7.02
Hp Service Manager 9.20
Hp Service Manager 7.11
Hp Service Center 6.2.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »