CSRF Vulnerability in HP Service Manager Versions 7.21 and 9.x
CVE-2014-2633

Currently unrated

Key Information:

Vendor: HP
Status: Service Manager
Vendor: CVE Published:; 23 August 2014

What is CVE-2014-2633?

A CSRF vulnerability exists in HP Service Manager that enables remote attackers to exploit the authentication mechanisms of affected users. By leveraging this vulnerability, attackers can potentially execute unauthorized commands on behalf of users without their consent, leading to significant security risks and data breaches. Users are encouraged to implement the latest patches and adhere to best practices for security to mitigate potential threats.

References

http://www.securityfocus.com/bid/69376

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1030756

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/95449

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 23, 2014
Vulnerability Reserved
Mar 24, 2014