CVSS: 7.8EPSS: 97%CPEs: 13EXPL: 0CVE-2013-4823 – Hewlett-Packard Intelligent Management Center BIMS bimsDownload Servlet Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2013-4823
Unspecified vulnerability in HP Intelligent Management Center (iMC) and HP IMC Branch Intelligent Management System Software Module (aka BIMS) allows remote attackers to obtain sensitive information via unknown vectors, aka ZDI-CAN-1607. Vulnerabilidad no especificada en HP Intelligent Management Center (iMC) y HP IMC Branch Intelligent Management System Software Module (BIMS) permite a atacantes remotos obtener información sensible a través de vectores desconocidos, tambien conocido como ZDI-CAN-1607. This vulnerability allows remote attackers to obtain sensitive information on vulnerable installations of Hewlett-Packard Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the bimsDownload servlet. Authentication is not required to access this servlet, which allows any file readable by SYSTEM to be disclosed. • https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03943425 •
CVSS: 9.4EPSS: 2%CPEs: 1EXPL: 0CVE-2012-5211 – Hewlett-Packard Intelligent Management Center UAM acmServletDownload Servlet Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2012-5211
Unspecified vulnerability in HP Intelligent Management Center (iMC) User Access Manager (UAM) before 5.2 E0402 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1643. Vulnerabilidad no especificada en HP Intelligent Management Center (iMC) User Access Manager (UAM) anterior a v5.2 E0402, permitiendo a atacantes remotos obtener información sensible, modificar datos o causar una denegación de servicio mediante vectores desconocidos, también conocida como ZDI-CAN-1643. This vulnerability allows remote attackers to obtain sensitive information on vulnerable installations of Hewlett-Packard Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the acmServletDownload servlet. This servlet contains a directory traversal vulnerability that allows any file readable by SYSTEM to be disclosed. • http://marc.info/?l=bugtraq&m=136268852804156&w=2 https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03689276 •
CVSS: 9.4EPSS: 2%CPEs: 11EXPL: 0CVE-2012-5207 – Hewlett-Packard Intelligent Management Center RssServlet Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2012-5207
Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1661. Vulnerabilidad no especificada en HP Intelligent Management Center (iMC) y Intelligent Management Center para Automated Network Manager (ANM) anterior a v5.2 E0401, permitiendo a atacantes remotos obtener información sensible, modificar datos o causar una denegación de servicio mediante vectores desconocidos, también conocida como ZDI-CAN-1661. This vulnerability allows remote attackers to obtain sensitive information on vulnerable installations of HP Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RssServlet servlet. This servlet suffers from a XML external entity injection vulnerability which allows any file readable by SYSTEM to be disclosed. • http://marc.info/?l=bugtraq&m=136268852804156&w=2 https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03689276 •
CVSS: 7.5EPSS: 78%CPEs: 11EXPL: 0CVE-2012-5203 – Hewlett-Packard Intelligent Management Center ReportImgServlet Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2012-5203
Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1613. Vulnerabilidad no especificada en HP Intelligent Management Center (iMC) y Intelligent Management Center para Automated Network Manager (ANM) anterior a v5.2 E0401, permitiendo a atacantes remotos obtener información sensible, modificar datos o causar una denegación de servicio mediante vectores desconocidos, también conocida como ZDI-CAN-1613. This vulnerability allows remote attackers to obtain sensitive information on vulnerable installations of Hewlett-Packard Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ReportImgServlet. Authentication is not required to access this servlet, which allows any file readable by SYSTEM to be disclosed. • http://marc.info/?l=bugtraq&m=136268852804156&w=2 https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03689276 •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2012-5213
https://notcve.org/view.php?id=CVE-2012-5213
Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to obtain sensitive information via unknown vectors, aka ZDI-CAN-1662. Vulnerabilidad no especificada en HP Intelligent Management Center (iMC) y Intelligent Management Center para Automated Network Manager (ANM) anterior a v5.2 E0401, permite a atacantes remotos obtener información sensible mediante vectores desconocidos, también conocida como ZDI-CAN-1662. • http://marc.info/?l=bugtraq&m=136268852804156&w=2 https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03689276 •