Remote Information Exposure in HP Systems Insight Manager
CVE-2012-1994

5.7MEDIUM

Key Information:

Vendor

HP
Status
HP Systems Insight Manager
Vendor
CVE Published:
10 February 2020

What is CVE-2012-1994?

HP Systems Insight Manager, prior to version 7.0, is susceptible to a vulnerability that enables a remote user on an adjacent network to access sensitive information. This oversight can lead to unauthorized data access, potentially compromising sensitive operational details and system configurations. Organizations utilizing affected versions of HP Systems Insight Manager should update their systems to prevent exploitation of this vulnerability.

Affected Version(s)

HP Systems Insight Manager before 7.0

References

http://www.securityfocus.com/bid/53315
x_refsource_MISC
http://www.securitytracker.com/id?1026987
x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/75294
x_refsource_MISC

CVSS V3.1

Score:
5.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.