) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:hp:system_management_homepage:7.5.5.6:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-50271 |
A potential security vulnerability has been identified with HP-UX System Management Homepage (SMH). This vulnerability could be exploited locally or remotely to disclose information. Published: December 17, 2023; 10:15:07 AM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2017-12553 |
A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Published: February 15, 2018; 5:29:04 PM -0500 |
V4.0:(not available) V3.0: 5.6 MEDIUM V2.0: 5.5 MEDIUM |
| CVE-2017-12552 |
A local arbitrary execution of commands vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Published: February 15, 2018; 5:29:04 PM -0500 |
V4.0:(not available) V3.0: 5.6 MEDIUM V2.0: 5.5 MEDIUM |
| CVE-2017-12551 |
A local arbitrary execution of commands vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Published: February 15, 2018; 5:29:04 PM -0500 |
V4.0:(not available) V3.0: 5.6 MEDIUM V2.0: 5.5 MEDIUM |
| CVE-2017-12550 |
A local security misconfiguration vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Published: February 15, 2018; 5:29:04 PM -0500 |
V4.0:(not available) V3.0: 5.6 MEDIUM V2.0: 5.5 MEDIUM |
| CVE-2017-12549 |
A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Published: February 15, 2018; 5:29:04 PM -0500 |
V4.0:(not available) V3.0: 5.6 MEDIUM V2.0: 5.5 MEDIUM |
| CVE-2017-12548 |
A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Published: February 15, 2018; 5:29:04 PM -0500 |
V4.0:(not available) V3.0: 5.6 MEDIUM V2.0: 5.5 MEDIUM |
| CVE-2017-12547 |
A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Published: February 15, 2018; 5:29:04 PM -0500 |
V4.0:(not available) V3.0: 5.6 MEDIUM V2.0: 5.5 MEDIUM |
| CVE-2017-12546 |
A local buffer overflow vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Published: February 15, 2018; 5:29:04 PM -0500 |
V4.0:(not available) V3.0: 5.6 MEDIUM V2.0: 5.5 MEDIUM |
| CVE-2017-12545 |
A remote denial of service vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Published: February 15, 2018; 5:29:04 PM -0500 |
V4.0:(not available) V3.0: 7.5 HIGH V2.0: 7.8 HIGH |
| CVE-2017-12544 |
A cross-site scripting vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. Published: February 15, 2018; 5:29:04 PM -0500 |
V4.0:(not available) V3.0: 5.4 MEDIUM V2.0: 3.5 LOW |
| CVE-2016-4543 |
The exif_process_IFD_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate IFD sizes, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted header data. Published: May 21, 2016; 9:59:28 PM -0400 |
V4.0:(not available) V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH |
| CVE-2015-8651 |
Integer overflow in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows attackers to execute arbitrary code via unspecified vectors. Published: December 28, 2015; 6:59:19 PM -0500 |
V4.0:(not available) V3.1: 8.8 HIGH V2.0: 9.3 HIGH |
| CVE-2013-3576 |
ginkgosnmp.inc in HP System Management Homepage (SMH) allows remote authenticated users to execute arbitrary commands via shell metacharacters in the PATH_INFO to smhutil/snmpchp.php.en. Published: June 14, 2013; 2:55:01 PM -0400 |
V4.0:(not available) V3.x:(not available) V2.0: 9.0 HIGH |