Remote Code Execution Vulnerability in HP Service Manager by HP
CVE-2014-2632

Currently unrated

Key Information:

Vendor: HP
Status: Service Manager
Vendor: CVE Published:; 23 August 2014

What is CVE-2014-2632?

An unspecified vulnerability in the WebTier component of HP Service Manager versions 7.21 and 9.x (prior to 9.34) allows remote attackers to execute arbitrary code. The vulnerability may be exploited through unknown vectors, potentially leading to significant compromise of the system's security.

References

http://www.securitytracker.com/id/1030756

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/69377

vdb-entryx_refsource_BID

http://secunia.com/advisories/60028

third-party-advisoryx_refsource_SECUNIA

EPSS Score

38% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 23, 2014
Vulnerability Reserved
Mar 24, 2014