Hp

Identity Driven Manager

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2013-4809

  • EPSS 0.86%
  • Published 16.09.2013 13:01:46
  • Last modified 22.04.2025 14:51:37

Multiple SQL injection vulnerabilities in GetEventsServlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) sort or (2) dir parame...

10

CVE-2013-4811

  • EPSS 83.54%
  • Published 16.09.2013 13:01:46
  • Last modified 22.04.2025 14:51:37

UpdateDomainControllerServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the adCert argument, which allows remote attackers to upload ...

10

CVE-2013-4812

  • EPSS 74%
  • Published 16.09.2013 13:01:46
  • Last modified 22.04.2025 14:51:37

UpdateCertificatesServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the fileName argument, which allows remote attackers to upload .j...

10

CVE-2013-4813

  • EPSS 6.4%
  • Published 16.09.2013 13:01:46
  • Last modified 22.04.2025 14:51:37

The Agent (aka AgentController) servlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allows remote attackers to execute arbitrary commands via a HEAD request, aka ZDI-CAN-1745.