HP System Management Homepage (SMH) before 7.1.1 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.
No CVSS v3.1
No CVSS v3.0
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact Complete
Integrity Impact Complete
Availability Impact Complete
AV:N/AC:L/Au:N/C:C/I:C/A:C
Vendors | Products |
---|---|
Linux |
|
Hp |
|
Microsoft |
|
Configuration 1 [-]
AND |
|
References
Link | Resource |
---|---|
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hp
Published: 2022-10-03T16:15:37
Updated: 2022-10-03T16:15:37
Reserved: 2022-10-03T00:00:00
Link: CVE-2012-2012
JSON object: View
NVD Information
Status : Modified
Published: 2012-06-29T22:55:01.017
Modified: 2019-10-09T23:04:50.747
Link: CVE-2012-2012
JSON object: View
Redhat Information
No data.
CWE