Vulnerabilities > HP > Network Virtualization

DATE CVE VULNERABILITY TITLE RISK
2015-05-25 CVE-2015-2121 Information Exposure vulnerability in HP Network Virtualization 11.52/8.61
HP Network Virtualization for LoadRunner and Performance Center 8.61 and 11.52 allows remote attackers to read arbitrary files via a crafted filename in a URL to the (1) HttpServlet or (2) NetworkEditorController component, aka ZDI-CAN-2569.
network
low complexity
hp CWE-200
7.8
7.8
2014-07-26 CVE-2014-2626 Path Traversal vulnerability in HP Network Virtualization 8.6
Directory traversal vulnerability in the toServerObject function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to create files, and consequently execute arbitrary code, via crafted input, aka ZDI-CAN-2024.
network
low complexity
hp CWE-22
critical
 9.4
9.4
2014-07-26 CVE-2014-2625 Path Traversal vulnerability in HP Network Virtualization 8.6
Directory traversal vulnerability in the storedNtxFile function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to read arbitrary files via crafted input, aka ZDI-CAN-2023.
network
low complexity
hp CWE-22
8.5
8.5