cbcvebase.

Hp Universal Configuration Management Database vulnerabilities

7 known vulnerabilities affecting hp/universal_configuration_management_database.

Total CVEs
7
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL1HIGH3MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2014-2617P2CRITICALCVSS 10.0Exploitedv10.01v10.102014-07-07
CVE-2014-2617 [CRITICAL] CVE-2014-2617: Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute ar Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors, aka ZDI-CAN-2104.
nvd
CVE-2014-7883P3MEDIUMCVSS 5.0PoCv9.05v10.01+1 more2015-02-15
CVE-2014-7883 [MEDIUM] CWE-200 CVE-2014-7883: HP Universal CMDB (UCMDB) Probe 9.05, 10.01, and 10.11 enables the HTTP TRACE method, which allows r HP Universal CMDB (UCMDB) Probe 9.05, 10.01, and 10.11 enables the HTTP TRACE method, which allows remote attackers to obtain sensitive information by reading the headers of a response.
nvd
CVE-2014-2616P3HIGHCVSS 7.5v10.01v10.102014-07-07
CVE-2014-2616 [HIGH] CVE-2014-2616: Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute ar Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors, aka ZDI-CAN-2091.
nvd
CVE-2014-2615P3HIGHCVSS 7.5v10.01v10.102014-07-07
CVE-2014-2615 [HIGH] CVE-2014-2615: Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute ar Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors, aka ZDI-CAN-2083.
nvd
CVE-2013-6215P3HIGHCVSS 8.5v10.01v10.102014-04-19
CVE-2013-6215 [HIGH] CVE-2013-6215: Unspecified vulnerability in the Integration Service in HP Universal Configuration Management Databa Unspecified vulnerability in the Integration Service in HP Universal Configuration Management Database 10.01 and 10.10 allows remote authenticated users to execute arbitrary code via unknown vectors, aka ZDI-CAN-1977.
nvd
CVE-2013-6214P4MEDIUMCVSS 4.0v9.05v10.01+1 more2014-04-19
CVE-2013-6214 [MEDIUM] CVE-2013-6214: Unspecified vulnerability in the Integration Service in HP Universal Configuration Management Databa Unspecified vulnerability in the Integration Service in HP Universal Configuration Management Database 9.05, 10.01, and 10.10 allows remote authenticated users to obtain sensitive information via unknown vectors, aka ZDI-CAN-2042.
nvd
CVE-2015-5440P4MEDIUMCVSS 4.9v10.00v10.01+3 more2015-09-16
CVE-2015-5440 [MEDIUM] CWE-200 CVE-2015-5440: HP UCMDB 10.00 and 10.01 before 10.01CUP12, 10.10 and 10.11 before 10.11CUP6, and 10.2x before 10.21 HP UCMDB 10.00 and 10.01 before 10.01CUP12, 10.10 and 10.11 before 10.11CUP6, and 10.2x before 10.21 allows local users to obtain sensitive information via unspecified vectors.
nvd
Hp Universal Configuration Management Database vulnerabilities | cvebase