Remote Code Execution Flaw in HP SiteScope by HP
CVE-2012-3259

Currently unrated

Key Information:

Vendor: HP
Status: Sitescope
Vendor: CVE Published:; 25 September 2012

Summary

A vulnerability exists in the SOAP feature of HP SiteScope 11.10 through 11.12, allowing remote attackers to execute arbitrary code. The details of this exploit remain unspecified and could be leveraged through unknown vectors to compromise the security of affected systems.

References

http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docD...

vendor-advisoryx_refsource_HP

https://exchange.xforce.ibmcloud.com/vulnerabilities/78877

vdb-entryx_refsource_XF

http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docD...

vendor-advisoryx_refsource_HP

EPSS Score

34% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 25, 2012
Vulnerability Reserved
Jun 6, 2012