Remote Code Execution Vulnerability in HP Universal CMDB
CVE-2014-2615

Currently unrated

Key Information:

Vendor: HP
Status: Universal Configuration Management Database
Vendor: CVE Published:; 7 July 2014

What is CVE-2014-2615?

An unspecified vulnerability in HP Universal CMDB versions 10.01 and 10.10 enables attackers to execute arbitrary code or access sensitive information through unknown vectors. This vulnerability can be exploited by remote attackers, underscoring the need for robust security measures to safeguard the affected systems. Organizations using these versions should ensure they apply necessary patches and follow security advisories to mitigate potential threats.

References

http://www.securitytracker.com/id/1030518

vdb-entryx_refsource_SECTRACK

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

http://www.securityfocus.com/bid/68363

vdb-entryx_refsource_BID

EPSS Score

7% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 7, 2014
Vulnerability Reserved
Mar 24, 2014