Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Informations
NameCVE-2015-2134First vendor Publication2015-07-21
VendorCveLast vendor Modification2017-09-20

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:S/C:P/I:P/A:P)
Cvss Base Score6Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityMedium
Cvss Expoit Score6.8AuthenticationRequires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 7.5.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2134

CWE : Common Weakness Enumeration

%idName
100 %CWE-352Cross-Site Request Forgery (CSRF) (CWE/SANS Top 25)

CPE : Common Platform Enumeration

TypeDescriptionCount
Application93

Information Assurance Vulnerability Management (IAVM)

DateDescription
2015-07-23IAVM : 2015-B-0093 - Multiple Vulnerabilities in HP System Management Homepage (SMH)
Severity : Category I - VMSKEY : V0061133

Nessus® Vulnerability Scanner

DateDescription
2015-07-22Name : The remote web server is affected by multiple vulnerabilities.
File : hpsmh_7_5.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/75961
HP http://marc.info/?l=bugtraq&m=144050155601375&w=2
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na...
SECTRACK http://www.securitytracker.com/id/1033014

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
DateInformations
2018-03-03 12:03:05
  • Multiple Updates
2017-09-21 09:25:19
  • Multiple Updates
2016-11-29 00:25:07
  • Multiple Updates
2016-08-23 09:24:54
  • Multiple Updates
2016-04-27 02:11:47
  • Multiple Updates
2015-10-18 17:23:50
  • Multiple Updates
2015-07-24 13:29:34
  • Multiple Updates
2015-07-22 21:24:01
  • Multiple Updates
2015-07-22 00:18:23
  • First insertion