Remote Code Execution Vulnerability in HP Universal CMDB by HP
CVE-2014-2616

Currently unrated

Key Information:

Vendor: HP
Status: Universal Configuration Management Database
Vendor: CVE Published:; 7 July 2014

Summary

An unspecified vulnerability in HP Universal CMDB versions 10.01 and 10.10 allows remote attackers to execute arbitrary code or obtain sensitive information through unknown vectors. This issue emphasizes the importance of timely updates and awareness of external threats that may exploit the weaknesses present in these versions.

References

http://www.securitytracker.com/id/1030518

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/68363

vdb-entryx_refsource_BID

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 7, 2014
Vulnerability Reserved
Mar 24, 2014