Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hp system management homepage vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2016-2015
HPE System Management Homepage prior to 7.5.5 allows local users to obtain sensitive information or modify data via unspecified vectors.
Hp System Management Homepage
NA
CVE-2007-3260
HP System Management Homepage (SMH) prior to 2.1.9 for Linux, when used with Novell eDirectory, assigns the eDirectory members to the root group, which allows remote authenticated eDirectory users to gain privileges.
Hp System Management Homepage
6.5
CVSSv3
CVE-2016-4394
HPE System Management Homepage before v7.6 allows remote malicious users to obtain sensitive information via unspecified vectors, related to an "HSTS" issue.
Hp System Management Homepage
7.5
CVSSv3
CVE-2016-4396
HPE System Management Homepage before v7.6 allows remote malicious users to have an unspecified impact via unknown vectors, related to a "Buffer Overflow" issue.
Hp System Management Homepage
NA
CVE-2013-3576
ginkgosnmp.inc in HP System Management Homepage (SMH) allows remote authenticated users to execute arbitrary commands via shell metacharacters in the PATH_INFO to smhutil/snmpchp.php.en.
Hp System Management Homepage
1 EDB exploit
NA
CVE-2011-3846
Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) 6.2.2.7 allows remote malicious users to hijack the authentication of administrators for requests that create administrative accounts.
Hp System Management Homepage 6.2.2.7
NA
CVE-2006-1774
HP System Management Homepage (SMH) 2.1.3.132, when running on CompaqHTTPServer/9.9 on Windows, Linux, or Tru64 UNIX, and when "Trust by Certificates" is not enabled, allows remote malicious users to bypass authentication via a crafted URL.
Hp System Management Homepage 2.1.3.132
Hp Compaqhttpserver 9.9
NA
CVE-2014-7874
Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) prior to 3.2.3 on HP-UX B.11.23, and prior to 3.2.8 on HP-UX B.11.31, allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Hp System Management Homepage
Hp Hp-ux B.11.23
Hp Hp-ux B.11.31
NA
CVE-2010-4112
HP Insight Management Agents prior to 8.6 allows remote malicious users to obtain sensitive information via an unspecified request that triggers disclosure of the full path.
Hp Insight Management Agents
Hp Insight Management Agents 7.70.0.0
Hp Insight Management Agents 8.15.0.0
Hp Insight Management Agents 8.11.0.0
Hp Insight Management Agents 7.60.0.0
Hp Insight Management Agents 7.51.0.0
Hp Insight Management Agents 7.10.0.0
Hp Insight Management Agents 7.0.0.0
Hp Insight Management Agents 8.20.0.0
Hp Insight Management Agents 8.22.0.0
Hp Insight Management Agents 7.90.0.0
Hp Insight Management Agents 7.80.0.0
Hp Insight Management Agents 7.30.0.0
Hp Insight Management Agents 7.20.0.0
Hp Insight Management Agents 8.1.0.0
Hp Insight Management Agents 8.50.0.0
Hp Insight Management Agents 8.10.0.0
Hp Insight Management Agents 8.0.0.0
Hp Insight Management Agents 7.50.0.0
Hp Insight Management Agents 7.41.0.0
Hp Insight Management Agents 6.40.0.0
Hp Insight Management Agents 6.31.0.0
NA
CVE-2011-1537
Cross-site scripting (XSS) vulnerability in HP Proliant Support Pack (PSP) prior to 8.7 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Hp Proliant Support Pack
Hp Proliant Support Pack 8.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »