Shodan
Vulnerabilities
Vulnerable Software
Hp:  >> System Management Homepage  Security Vulnerabilities
CVE-2013-3576
ginkgosnmp.inc in HP System Management Homepage (SMH) allows remote authenticated users to execute arbitrary commands via shell metacharacters in the PATH_INFO to smhutil/snmpchp.php.en.
CVSS Score
9.0
EPSS Score
0.463
Published
2013-06-14
CVE-2012-2012
HP System Management Homepage (SMH) before 7.1.1 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.
CVSS Score
10.0
EPSS Score
0.045
Published
2012-06-29
CVE-2012-2013
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.1.1 allows remote attackers to cause a denial of service, or possibly obtain sensitive information or modify data, via unknown vectors.
CVSS Score
7.5
EPSS Score
0.013
Published
2012-06-29
CVE-2012-2014
HP System Management Homepage (SMH) before 7.1.1 does not properly validate input, which allows remote authenticated users to have an unspecified impact via unknown vectors.
CVSS Score
9.0
EPSS Score
0.003
Published
2012-06-29
CVE-2012-2015
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.1.1 allows remote authenticated users to gain privileges and obtain sensitive information via unknown vectors.
CVSS Score
9.0
EPSS Score
0.003
Published
2012-06-29
CVE-2012-2016
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.1.1 allows local users to obtain sensitive information via unknown vectors.
CVSS Score
4.9
EPSS Score
0.001
Published
2012-06-29
CVE-2012-1993
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows local users to modify data or obtain sensitive information via unknown vectors.
CVSS Score
3.2
EPSS Score
0.001
Published
2012-04-18
CVE-2012-0135
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows remote authenticated users to cause a denial of service via unknown vectors.
CVSS Score
3.5
EPSS Score
0.002
Published
2012-04-18
CVE-2011-3846
Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) 6.2.2.7 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts.
CVSS Score
6.8
EPSS Score
0.002
Published
2012-04-12
CVE-2011-1540
Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote authenticated users to execute arbitrary code via unknown vectors.
CVSS Score
9.0
EPSS Score
0.005
Published
2011-04-29


Products
Pricing
Contact Us

Shodan ® - All rights reserved