CVSS: 10.0EPSS: 1%CPEs: 5EXPL: 0CVE-2013-4808
https://notcve.org/view.php?id=CVE-2013-4808
Unspecified vulnerability in HP Service Manager 7.11, 9.21, 9.30, and 9.31 and Service Center 6.2.8 allows remote attackers to obtain privileged access via unknown vectors. Vulnerabilidad sin especificar en HP Service Manager v7.11, v9.21, v9.30, y v9.31 y Service Center v6.2.8 permite a atacantes remotos obtener acceso privilegiado a través de vectores desconocidos. • http://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c03888320 http://secunia.com/advisories/54546 http://www.securitytracker.com/id/1028912 https://exchange.xforce.ibmcloud.com/vulnerabilities/86444 •
CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2013-2337
https://notcve.org/view.php?id=CVE-2013-2337
Cross-site scripting (XSS) vulnerability in HP Service Manager 7.11, 9.21, 9.30, and 9.31, and ServiceCenter 6.2.8, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad XSS en HP Service Manager 7.11, 9.21, 9.30, y 9.31, y ServiceCenter 6.2.8, permite a atacantes remotos inyectar secuencias arbitrarias de comandos web o HTML a través de vectores no especificados. • http://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03784101 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0CVE-2013-2336
https://notcve.org/view.php?id=CVE-2013-2336
HP Service Manager 7.11, 9.21, 9.30, and 9.31, and ServiceCenter 6.2.8, allows remote attackers to obtain sensitive information via unspecified vectors. HP Service Manager 7.11, 9.21, 9.30, y 9.31, y ServiceCenter 6.2.8, permite a atacantes remotos obtener información sensible a través de vectores no especificados. • http://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03784101 •
CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2011-1858
https://notcve.org/view.php?id=CVE-2011-1858
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows local users to bypass intended access restrictions via unknown vectors. Vulnerabilidad no especificada en HP Service Manager v7.02, v7.11, v9.20, y v9.21 y Service Center v6.2.8 permite a atacantes remotos evitar las restricciones de acceso a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=130755929821099&w=2 http://secunia.com/advisories/44836 http://securityreason.com/securityalert/8273 http://www.securityfocus.com/bid/48168 http://www.securitytracker.com/id?1025611 https://exchange.xforce.ibmcloud.com/vulnerabilities/67909 •
CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2011-1862
https://notcve.org/view.php?id=CVE-2011-1862
Cross-site scripting (XSS) vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en HP Service Manager v7.02, v7.11, v9.20, y v9.21 y el Service Center v6.2.8 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. • http://marc.info/?l=bugtraq&m=130755929821099&w=2 http://secunia.com/advisories/44836 http://securityreason.com/securityalert/8273 http://www.securityfocus.com/bid/48168 http://www.securitytracker.com/id?1025611 https://exchange.xforce.ibmcloud.com/vulnerabilities/67913 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •