Clickjacking Vulnerability in HP System Management Homepage
CVE-2014-2642

Currently unrated

Key Information:

Vendor: HP
Status: System Management Homepage
Vendor: CVE Published:; 2 October 2014

Summary

The vulnerability in HP System Management Homepage prior to version 7.4 enables remote attackers to perform clickjacking attacks through unspecified means. This flaw can potentially allow an attacker to deceive users into clicking on malicious links or performing actions they did not intend, compromising the security of user sessions and sensitive information.

References

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

http://www.securitytracker.com/id/1030960

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Oct 2, 2014
Vulnerability Reserved
Mar 24, 2014