Cross-Site Request Forgery Vulnerability in HP Operations Orchestration
CVE-2013-6192

Currently unrated

Key Information:

Vendor: HP
Status: Operations Orchestration
Vendor: CVE Published:; 17 December 2013

Summary

A cross-site request forgery vulnerability exists in HP Operations Orchestration prior to version 9, which could allow remote attackers to exploit this flaw and potentially hijack the authentication of victims through various undisclosed methods. If successfully executed, this could grant unauthorized access to sensitive operations within the affected product.

References

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

http://www.securitytracker.com/id/1029496

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Dec 17, 2013
Vulnerability Reserved
Oct 21, 2013