Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:hp:insight_diagnostics:9.4.0.4710:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2013-3575 |
hpdiags/frontend2/help/pageview.php in HP Insight Diagnostics 9.4.0.4710 does not properly restrict PHP include or require statements, which allows remote attackers to include arbitrary hpdiags/frontend2/help/ .html files via the path parameter. Published: June 14, 2013; 9:07:29 AM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-2013-3574 |
Absolute path traversal vulnerability in hpdiags/frontend2/commands/saveCompareConfig.php in HP Insight Diagnostics 9.4.0.4710 allows remote attackers to write data to arbitrary files via a full pathname in the argument to the devicePath (aka mount) parameter. Published: June 14, 2013; 9:07:29 AM -0400 |
V3.x:(not available) V2.0: 7.8 HIGH |
CVE-2013-3573 |
HP Insight Diagnostics 9.4.0.4710 allows remote attackers to conduct unspecified injection attacks via unknown vectors. Published: June 14, 2013; 9:07:29 AM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |