CVE-2014-2610

Currently unrated

Key Information:

Vendor
HP
Status
Executive Scorecard
Vendor
CVE Published:
19 June 2014

Summary

Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by uploading an executable file, aka ZDI-CAN-2117.

References

http://secunia.com/advisories/59363
third-party-advisoryx_refsource_SECUNIA
http://zerodayinitiative.com/advisories/ZDI-14-209/
x_refsource_MISC
http://www.securityfocus.com/bid/68093
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.