Vulnerabilities > HP > System Management Homepage

DATE CVE VULNERABILITY TITLE RISK
2013-07-22 CVE-2013-2361 Cross-Site Scripting vulnerability in HP System Management Homepage
Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
hp CWE-79
4.3
4.3
2013-07-22 CVE-2013-2360 Remote Denial of Service vulnerability in HP System Management Homepage
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-2013-2357, CVE-2013-2358, and CVE-2013-2359.
network
low complexity
hp
4.0
4.0
2013-07-22 CVE-2013-2359 Remote Denial of Service vulnerability in HP System Management Homepage
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-2013-2357, CVE-2013-2358, and CVE-2013-2360.
network
low complexity
hp
4.0
4.0
2013-07-22 CVE-2013-2358 Remote Denial of Service vulnerability in HP System Management Homepage
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-2013-2357, CVE-2013-2359, and CVE-2013-2360.
network
low complexity
hp
4.0
4.0
2013-07-22 CVE-2013-2357 Remote Denial of Service vulnerability in HP System Management Homepage
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-2013-2358, CVE-2013-2359, and CVE-2013-2360.
network
low complexity
hp
4.0
4.0
2013-07-22 CVE-2013-2356 Information Disclosure vulnerability in HP System Management Homepage
HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2013-2363.
network
low complexity
hp
5.0
5.0
2013-07-22 CVE-2013-2355 Permissions, Privileges, and Access Controls vulnerability in HP System Management Homepage
HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2012-5217.
network
low complexity
hp CWE-264
5.0
5.0
2013-07-22 CVE-2012-5217 Permissions, Privileges, and Access Controls vulnerability in HP System Management Homepage
HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2013-2355.
network
low complexity
hp CWE-264
5.0
5.0
2013-06-14 CVE-2013-3576 OS Command Injection vulnerability in HP System Management Homepage
ginkgosnmp.inc in HP System Management Homepage (SMH) allows remote authenticated users to execute arbitrary commands via shell metacharacters in the PATH_INFO to smhutil/snmpchp.php.en.
network
low complexity
hp CWE-78
critical
 9.0
9.0
2012-06-29 CVE-2012-2016 Unspecified vulnerability in HP System Management Homepage
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.1.1 allows local users to obtain sensitive information via unknown vectors.
local
low complexity
hp linux microsoft
4.9
4.9