CVE-1999-1136 — Sensitive Information Exposure in HP Hp-ux

CWE-200 — Sensitive Information Exposure3 documents3 sources

Severity

4.6MEDIUMNVD

EPSS

0.1%

top 68.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Hp-ux HP MPE IX

Timeline

PublishedJul 30

Latest updateApr 30

Description

Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or modem) between customer and Response Center Predictive systems.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages2 packages

▶NVDhp/hp-ux11.00

▶NVDhp/mpe_ix5.5+1

Patches

Patch: cert.ip-plus.net ↗Patch: www.ciac.org ↗Patch: cert.ip-plus.net ↗

🔴Vulnerability Details

GHSA

GHSA-628h-jwx7-pqp9: Vulnerability in Predictive on HP-UX 11↗2022-04-30

▶

CVEList

CVE-1999-1136: Vulnerability in Predictive on HP-UX 11↗2002-03-09

▶