HP » Universal Configuration Management Database : Security Vulnerabilities, CVEs,
HP UCMDB 10.00 and 10.01 before 10.01CUP12, 10.10 and 10.11 before 10.11CUP6, and 10.2x before 10.21 allows local users to obtain sensitive information via unspecified vectors.
Max CVSS
4.9
EPSS Score
0.04%
Published
2015-09-16
Updated
2016-12-22
HP Universal CMDB (UCMDB) Probe 9.05, 10.01, and 10.11 enables the HTTP TRACE method, which allows remote attackers to obtain sensitive information by reading the headers of a response.
Max CVSS
5.0
EPSS Score
94.45%
Published
2015-02-15
Updated
2019-10-09
Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors, aka ZDI-CAN-2104.
Max CVSS
10.0
EPSS Score
20.70%
Published
2014-07-07
Updated
2017-01-07
Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors, aka ZDI-CAN-2091.
Max CVSS
7.5
EPSS Score
12.02%
Published
2014-07-07
Updated
2017-01-07
Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors, aka ZDI-CAN-2083.
Max CVSS
7.5
EPSS Score
20.70%
Published
2014-07-07
Updated
2017-01-07
Unspecified vulnerability in the Integration Service in HP Universal Configuration Management Database 10.01 and 10.10 allows remote authenticated users to execute arbitrary code via unknown vectors, aka ZDI-CAN-1977.
Max CVSS
8.5
EPSS Score
9.36%
Published
2014-04-19
Updated
2019-10-09
Unspecified vulnerability in the Integration Service in HP Universal Configuration Management Database 9.05, 10.01, and 10.10 allows remote authenticated users to obtain sensitive information via unknown vectors, aka ZDI-CAN-2042.
Max CVSS
4.0
EPSS Score
0.10%
Published
2014-04-19
Updated
2019-10-09
7 vulnerabilities found