Filtered by vendor Hp
Subscriptions
Filtered by product System Management Homepage
Subscriptions
Total
76 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2007-3260 | 1 Hp | 1 System Management Homepage | 2017-07-29 | N/A |
| HP System Management Homepage (SMH) before 2.1.9 for Linux, when used with Novell eDirectory, assigns the eDirectory members to the root group, which allows remote authenticated eDirectory users to gain privileges. | ||||
| CVE-2007-3062 | 1 Hp | 1 System Management Homepage | 2017-07-29 | N/A |
| Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 2.1.2 running on Linux and Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | ||||
| CVE-2016-4396 | 1 Hp | 1 System Management Homepage | 2017-02-17 | N/A |
| HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via unknown vectors, related to a "Buffer Overflow" issue. | ||||
| CVE-2016-4395 | 1 Hp | 1 System Management Homepage | 2017-02-17 | N/A |
| HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via unknown vectors, related to a "Buffer Overflow" issue. | ||||
| CVE-2016-4394 | 1 Hp | 1 System Management Homepage | 2017-02-17 | N/A |
| HPE System Management Homepage before v7.6 allows remote attackers to obtain sensitive information via unspecified vectors, related to an "HSTS" issue. | ||||
| CVE-2016-4393 | 1 Hp | 1 System Management Homepage | 2017-02-17 | N/A |
| HPE System Management Homepage before v7.6 allows "remote authenticated" attackers to obtain sensitive information via unspecified vectors, related to an "XSS" issue. | ||||
| CVE-2016-1996 | 1 Hp | 1 System Management Homepage | 2016-12-03 | N/A |
| HPE System Management Homepage before 7.5.4 allows local users to obtain sensitive information or modify data via unspecified vectors. | ||||
| CVE-2016-1995 | 1 Hp | 1 System Management Homepage | 2016-12-03 | N/A |
| HPE System Management Homepage before 7.5.4 allows remote attackers to execute arbitrary code via unspecified vectors. | ||||
| CVE-2016-1994 | 1 Hp | 1 System Management Homepage | 2016-12-03 | N/A |
| HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information via unspecified vectors. | ||||
| CVE-2016-1993 | 1 Hp | 1 System Management Homepage | 2016-12-03 | N/A |
| HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors. | ||||
| CVE-2016-2015 | 1 Hp | 1 System Management Homepage | 2016-12-01 | N/A |
| HPE System Management Homepage before 7.5.5 allows local users to obtain sensitive information or modify data via unspecified vectors. | ||||
| CVE-2013-3576 | 1 Hp | 1 System Management Homepage | 2014-01-08 | N/A |
| ginkgosnmp.inc in HP System Management Homepage (SMH) allows remote authenticated users to execute arbitrary commands via shell metacharacters in the PATH_INFO to smhutil/snmpchp.php.en. | ||||
| CVE-2011-1541 | 1 Hp | 1 System Management Homepage | 2011-09-22 | N/A |
| Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote attackers to bypass intended access restrictions, and consequently execute arbitrary code, via unknown vectors. | ||||
| CVE-2011-1540 | 1 Hp | 1 System Management Homepage | 2011-09-22 | N/A |
| Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote authenticated users to execute arbitrary code via unknown vectors. | ||||
| CVE-2008-1663 | 1 Hp | 1 System Management Homepage | 2011-03-08 | N/A |
| Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) 2.1.10 and 2.1.11 on Linux and Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | ||||
| CVE-2007-4931 | 1 Hp | 1 System Management Homepage | 2011-03-08 | N/A |
| HP System Management Homepage (SMH) for Windows, when used in conjunction with HP Version Control Agent or Version Control Repository Manager, leaves old OpenSSL software active after an OpenSSL update, which has unknown impact and attack vectors, probably related to previous vulnerabilities for OpenSSL. | ||||