Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:h:hp:virtual_san_appliance:-:*:*:*:*:*:*:*
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2012-4362 |
hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838. Published: August 20, 2012; 6:55:01 PM -0400 |
V3.x:(not available) V2.0: 4.0 MEDIUM |
CVE-2012-4361 |
lhn/public/network/ping in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the second parameter. Published: August 20, 2012; 6:55:01 PM -0400 |
V3.x:(not available) V2.0: 7.7 HIGH |
CVE-2012-2986 |
lhn/public/network/ping in HP SAN/iQ 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) first, (2) third, or (3) fourth parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-4361. Published: August 20, 2012; 6:55:00 PM -0400 |
V3.x:(not available) V2.0: 7.7 HIGH |