CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2014-2643
https://notcve.org/view.php?id=CVE-2014-2643
Unspecified vulnerability in HP Systems Insight Manager (SIM) before 7.4 allows remote authenticated users to gain privileges via unknown vectors. Vulnerabilidad no especificada en HP Systems Insight Manager (SIM) anterior a 7.4 permite a usuarios remotos autenticados ganar privilegios a través de vectores desconocidos. • http://www.securitytracker.com/id/1030970 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04468121 •
CVSS: 4.3EPSS: 5%CPEs: 4EXPL: 0CVE-2014-2644
https://notcve.org/view.php?id=CVE-2014-2644
Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 7.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. Vulnerabilidad de XSS en HP Systems Insight Manager (SIM) anterior a 7.4 permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de vectores desconocidos. • http://www.securityfocus.com/bid/70223 http://www.securitytracker.com/id/1030970 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04468121 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 1%CPEs: 4EXPL: 0CVE-2014-2645
https://notcve.org/view.php?id=CVE-2014-2645
HP Systems Insight Manager (SIM) before 7.4 allows remote attackers to conduct clickjacking attacks via unknown vectors. HP Systems Insight Manager (SIM) anterior a 7.4 permite a atacantes remotos realizar ataques de clickjacking a través de vectores desconocidos. • http://www.securitytracker.com/id/1030970 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04468121 • CWE-20: Improper Input Validation •