Cross-Site Request Forgery Vulnerability in HP Insight Control Performance Management
CVE-2010-4032

Currently unrated

Key Information:

Vendor: HP
Status: Insight Control Performance Management
Vendor: CVE Published:; 2 November 2010

What is CVE-2010-4032?

A cross-site request forgery (CSRF) vulnerability exists in HP Insight Control Performance Management prior to version 6.2. This vulnerability allows remote attackers to exploit victim authentication sessions, potentially hijacking their accounts through unspecified methods. Proper security measures must be implemented to mitigate these risks and protect sensitive data.

References

http://www.vupen.com/english/advisories/2010/2832

vdb-entryx_refsource_VUPEN

http://www.securitytracker.com/id?1024672

vdb-entryx_refsource_SECTRACK

http://h20000.www2.hp.com/bizsupport/TechSupport/Document...

vendor-advisoryx_refsource_HP

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 2, 2010
Vulnerability Reserved
Oct 21, 2010