Search Results (Refine Search)
- CPE Product Version: cpe:/a:hp:operations_orchestration:7.1
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2016-8519 |
A remote code execution vulnerability in HPE Operations Orchestration Community edition and Enterprise edition prior to v10.70 was found. Published: February 15, 2018; 5:29:00 PM -0500 |
V3.0: 9.8 CRITICAL V2.0: 10.0 HIGH |
CVE-2017-8994 |
A input validation vulnerability in HPE Operations Orchestration product all versions prior to 10.80, allows for the execution of code remotely. Published: October 10, 2017; 5:29:00 PM -0400 |
V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH |
CVE-2015-5451 |
Cross-site request forgery (CSRF) vulnerability in HP Operations Orchestration Central 10.x before 10.22.001 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. Published: November 22, 2015; 10:59:00 PM -0500 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2013-6192 |
Cross-site request forgery (CSRF) vulnerability in HP Operations Orchestration before 9 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. Published: December 16, 2013; 11:46:45 PM -0500 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2013-6191 |
Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: December 16, 2013; 11:46:45 PM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2010-3985 |
Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9.0, when Internet Explorer 6.0 is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: October 26, 2010; 3:00:03 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |