CVE-2012-2015HP System Management Homepage vulnerability

19 documents9 sources
Severity
9.0CRITICALNVD
EPSS
0.3%
top 51.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
HP System Management Homepage
Timeline
PublishedJun 29
Latest updateMay 13

Description

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.1.1 allows remote authenticated users to gain privileges and obtain sensitive information via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 8.0 | Impact: 10.0

Affected Packages1 packages

Patches

Patch: h20000.www2.hp.comPatch: h20000.www2.hp.com

🔴Vulnerability Details

2
GHSA
GHSA-887g-4vhq-74cp: Unspecified vulnerability in HP System Management Homepage (SMH) before 72022-05-13
CVEList
CVE-2012-2015: Unspecified vulnerability in HP System Management Homepage (SMH) before 72012-06-29

💥Exploits & PoCs

1
Nuclei
Microsoft Windows 'HTTP.sys' - Remote Code Execution

🕵️Threat Intelligence

4
Trendmicro
Asruex Backdoor Infects Files Via Old Vulnerabilities2019-08-22
Trendmicro
Asruex Backdoor Infects Files Via Old Vulnerabilities2019-08-22
Trendmicro
Asruex Backdoor Infects Files Via Old Vulnerabilities2019-08-22
Unit42
NetTraveler Spear-Phishing Email Targets Diplomat of Uzbekistan2016-01-21

💬Community

2
Bugzilla
CVE-2015-7312 kernel: multiple race conditions in aufs2020-08-10
Bugzilla
CVE-2012-6685 rubygem-nokogiri: XML eXternal Entity (XXE) flaw2015-01-05
CVE-2012-2015 — HP vulnerability | cvebase