CVSS: 4.9EPSS: 0%CPEs: 77EXPL: 0CVE-2012-2016
https://notcve.org/view.php?id=CVE-2012-2016
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.1.1 allows local users to obtain sensitive information via unknown vectors. Vulnerabilidad sin especificar en HP System Management Homepage (SMH) anteriores a 7.1.1 permite a usuarios locales obtener información confidencial a través de vectores desconocidos. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041 •
CVSS: 10.0EPSS: 0%CPEs: 77EXPL: 0CVE-2012-2012
https://notcve.org/view.php?id=CVE-2012-2012
HP System Management Homepage (SMH) before 7.1.1 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation. HP System Management Homepage (SMH) anteriores a 7.1.1 no tiene un atributo para desactivar la funcionalidad de auto-completar en campos de formulario sin especificar, lo que facilita a atacantes remotos obtener información utilizando un equipo desatendido. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041 •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2011-3846
https://notcve.org/view.php?id=CVE-2011-3846
Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) 6.2.2.7 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts. Una vulnerabilidad de falsificación de peticiones en sitios cruzados (CSRF) en HP System Management Homepage (SMH) v6.2.2.7 permite a atacantes remotos secuestrar la autenticación de los administradores para las peticiones que crean las cuentas administrativas. • http://secunia.com/advisories/43012 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 9.0EPSS: 0%CPEs: 73EXPL: 0CVE-2011-1540
https://notcve.org/view.php?id=CVE-2011-1540
Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote authenticated users to execute arbitrary code via unknown vectors. Vulnerabilidad no especificada en HP System Management Homepage (SMH) antes de la versión v6.3 permite a usuarios remotos autenticados ejecutar código arbitrario a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=130331363227777&w=2 http://securityreason.com/securityalert/8233 http://www.securityfocus.com/bid/47507 http://www.securitytracker.com/id?1025414 •
CVSS: 10.0EPSS: 21%CPEs: 73EXPL: 0CVE-2011-1541
https://notcve.org/view.php?id=CVE-2011-1541
Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote attackers to bypass intended access restrictions, and consequently execute arbitrary code, via unknown vectors. Vulnerabilidad no especificada en HP System Management Homepage (SMH) antes de v6.3 permite a atacantes remotos evitar las restricciones de acceso previsto, y por lo tanto ejecutar código arbitrario, a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=130331363227777&w=2 http://securityreason.com/securityalert/8233 http://www.securityfocus.com/bid/47512 http://www.securitytracker.com/id?1025414 •