10
CVE-2011-0276
- EPSS 82.43%
- Veröffentlicht 02.02.2011 01:00:06
- Zuletzt bearbeitet 16.06.2026 23:27:08
- Quelle hp-security-alert@hp.com
- CVE-Watchlists
- Unerledigt
HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote attackers to execute arbitrary code via the doPost method in the com.trinagy.servlet.HelpManagerServlet class.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hp ≫ Openview Performance Insight Version5.2
Hp ≫ Openview Performance Insight Version5.3
Hp ≫ Openview Performance Insight Version5.4
Hp ≫ Openview Performance Insight Version5.31
Hp ≫ Openview Performance Insight Version5.41
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 82.43% | 0.996 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02695453
http://osvdb.org/70754
http://secunia.com/advisories/43145
http://securityreason.com/securityalert/8136
http://www.exploit-db.com/exploits/16984
http://www.securityfocus.com/archive/1/516093/100/0/threaded
http://www.securityfocus.com/bid/46079
http://www.securitytracker.com/id?1025014
http://www.vupen.com/english/advisories/2011/0258
http://www.zerodayinitiative.com/advisories/ZDI-11-034
https://exchange.xforce.ibmcloud.com/vulnerabilities/65038