Vulnerability Details : CVE-2014-2612
Unspecified vulnerability in HP Release Control 9.x before 9.13 p3 and 9.2x before RC 9.21.0003 p1 on Windows and 9.2x before RC 9.21.0002 p1 on Linux allows remote authenticated users to obtain sensitive information via unknown vectors.
Exploit prediction scoring system (EPSS) score for CVE-2014-2612
Probability of exploitation activity in the next 30 days: 4.86%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 92 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2014-2612
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.0
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:N/A:N |
8.0
|
2.9
|
NIST |
References for CVE-2014-2612
-
http://www.securityfocus.com/bid/68244
HP Release Control CVE-2014-2612 Unspecified Information Disclosure Vulnerability
-
http://www.securitytracker.com/id/1030490
HP Release Control Bugs Let Remote Authenticated Users Obtain Potentially Sensitive Information and Gain Elevated Privileges - SecurityTracker
-
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04352674
HP Support for Technical Help and Troubleshooting | HP® Customer Service.Vendor Advisory
Products affected by CVE-2014-2612
- cpe:2.3:a:hp:release_control:9.20:*:*:*:*:*:*:*When used together with: Linux » Linux Kernel
- cpe:2.3:a:hp:release_control:9.21:*:*:*:*:*:*:*When used together with: Linux » Linux Kernel
- cpe:2.3:a:hp:release_control:9.1:*:*:*:*:*:*:*
- cpe:2.3:a:hp:release_control:9.13:*:*:*:*:*:*:*
- cpe:2.3:a:hp:release_control:9.11:*:*:*:*:*:*:*
- cpe:2.3:a:hp:release_control:9.12:*:*:*:*:*:*:*