Vulnerabilities > HP > Universal Cmbd Foundation

DATE CVE VULNERABILITY TITLE RISK
2020-10-22 CVE-2020-11853 Arbitrary code execution vulnerability affecting multiple Micro Focus products.
network
low complexity
microfocus hp
8.8
8.8
2016-06-08 CVE-2016-4368 Improper Input Validation vulnerability in HP products
HPE Universal CMDB 10.0 through 10.21, Universal CMDB Configuration Manager 10.0 through 10.21, and Universal Discovery 10.0 through 10.21 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
network
low complexity
hp CWE-20
critical
 9.8
9.8
2016-06-08 CVE-2016-4367 Information Exposure vulnerability in HP Universal Cmbd Foundation
The Universal Discovery component in HPE Universal CMDB 10.0, 10.01, 10.10, 10.11, 10.20, and 10.21 allows remote attackers to obtain sensitive information via unspecified vectors.
network
low complexity
hp CWE-200
7.5
7.5
2016-04-12 CVE-2016-2001 Unspecified vulnerability in HP Universal Cmbd Foundation
HPE Universal CMDB Foundation 10.0, 10.01, 10.10, 10.11, and 10.20 allows remote attackers to obtain sensitive information or conduct URL redirection attacks via unspecified vectors.
network
low complexity
hp
7.4
7.4