CVE-2017-12545
https://notcve.org/view.php?id=CVE-2017-12545
A remote denial of service vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Se ha encontrado una vulnerabilidad de denegación de servicio (DoS) remota en HPE System Management Homepage para Windows y Linux en versiones anteriores a la 7.6. • http://www.securityfocus.com/bid/101029 http://www.securitytracker.com/id/1039437 https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us https://www.tenable.com/security/research/tra-2017-30 • CWE-476: NULL Pointer Dereference •
CVE-2017-12549
https://notcve.org/view.php?id=CVE-2017-12549
A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Se ha encontrado una vulnerabilidad de error de configuración de seguridad en HPE System Management Homepage para Windows y Linux en versiones anteriores a la 7.6. • http://www.securityfocus.com/bid/101029 http://www.securitytracker.com/id/1039437 https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us • CWE-287: Improper Authentication •
CVE-2017-12544 – HPE System Management 7.6.0.11 Cross Site Scripting
https://notcve.org/view.php?id=CVE-2017-12544
A cross-site scripting vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Se ha encontrado una vulnerabilidad de Cross-Site Scripting (XSS) en HPE System Management Homepage para Windows y Linux en versiones anteriores a la 7.6. HPE System Management versions 7.6.0.11 and below suffer from a cross site scripting vulnerability. • http://www.securityfocus.com/bid/101029 http://www.securitytracker.com/id/1039437 https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2017-12550
https://notcve.org/view.php?id=CVE-2017-12550
A local security misconfiguration vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Se ha encontrado una vulnerabilidad de error de configuración de seguridad en HPE System Management Homepage para Windows y Linux en versiones anteriores a la 7.6. • http://www.securityfocus.com/bid/101029 http://www.securitytracker.com/id/1039437 https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us •
CVE-2017-12548
https://notcve.org/view.php?id=CVE-2017-12548
A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Se ha encontrado una vulnerabilidad de ejecución local de comandos arbitrarios en HPE System Management Homepage para Windows y Linux en versiones anteriores a la 7.6. • http://www.securityfocus.com/bid/101029 http://www.securitytracker.com/id/1039437 https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us •