CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2011-1858
https://notcve.org/view.php?id=CVE-2011-1858
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows local users to bypass intended access restrictions via unknown vectors. Vulnerabilidad no especificada en HP Service Manager v7.02, v7.11, v9.20, y v9.21 y Service Center v6.2.8 permite a atacantes remotos evitar las restricciones de acceso a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=130755929821099&w=2 http://secunia.com/advisories/44836 http://securityreason.com/securityalert/8273 http://www.securityfocus.com/bid/48168 http://www.securitytracker.com/id?1025611 https://exchange.xforce.ibmcloud.com/vulnerabilities/67909 •
CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2011-1862
https://notcve.org/view.php?id=CVE-2011-1862
Cross-site scripting (XSS) vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en HP Service Manager v7.02, v7.11, v9.20, y v9.21 y el Service Center v6.2.8 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. • http://marc.info/?l=bugtraq&m=130755929821099&w=2 http://secunia.com/advisories/44836 http://securityreason.com/securityalert/8273 http://www.securityfocus.com/bid/48168 http://www.securitytracker.com/id?1025611 https://exchange.xforce.ibmcloud.com/vulnerabilities/67913 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.2EPSS: 0%CPEs: 5EXPL: 0CVE-2011-1857
https://notcve.org/view.php?id=CVE-2011-1857
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote authenticated users to bypass intended access restrictions via unknown vectors. Vulnerabilidad no especificada en HP Service Manager v7.02, v7.11, v9.20, y v9.21 y Service Center v6.2.8 permite a atacantes remotos evitar las restricciones de acceso a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=130755929821099&w=2 http://secunia.com/advisories/44836 http://securityreason.com/securityalert/8273 http://www.securityfocus.com/bid/48168 http://www.securitytracker.com/id?1025611 https://exchange.xforce.ibmcloud.com/vulnerabilities/67908 •
CVSS: 8.3EPSS: 2%CPEs: 5EXPL: 0CVE-2011-1861
https://notcve.org/view.php?id=CVE-2011-1861
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to modify data or obtain sensitive information via unknown vectors. Vulnerabilidad no especificada en HP Service Manager v7.02, v7.11, v9.20, y v9.21 y Service Center v6.2.8 permite a atacantes remotos la modificación de datos u obtener información sensible a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=130755929821099&w=2 http://secunia.com/advisories/44836 http://securityreason.com/securityalert/8273 http://www.securityfocus.com/bid/48168 http://www.securitytracker.com/id?1025611 https://exchange.xforce.ibmcloud.com/vulnerabilities/67912 •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2011-1863
https://notcve.org/view.php?id=CVE-2011-1863
HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allow remote authenticated users to conduct unspecified script injection attacks via unknown vectors. HP Service Manager v7.02, v7.11, v9.20, y v9.21 y Service Center v6.2.8 permite a usuarios remotos autenticados realizar ataques de inyección de secuencias de comandos no especificadas a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=130755929821099&w=2 http://secunia.com/advisories/44836 http://securityreason.com/securityalert/8273 http://www.securityfocus.com/bid/48168 http://www.securitytracker.com/id?1025611 https://exchange.xforce.ibmcloud.com/vulnerabilities/67914 • CWE-94: Improper Control of Generation of Code ('Code Injection') •