Clickjacking Vulnerability in HP Systems Insight Manager
CVE-2014-2645

Currently unrated

Key Information:

Vendor: HP
Status: Systems Insight Manager
Vendor: CVE Published:; 5 October 2014

Summary

HP Systems Insight Manager (SIM) before version 7.4 is susceptible to clickjacking attacks, which may allow remote attackers to manipulate user interactions with the application without their knowledge. This vulnerability poses a significant risk, as it can be exploited through deceptive UI elements that trick users into performing unintended actions. It is recommended that users of affected versions upgrade their installations to mitigate this risk. For detailed information, refer to HP's vendor advisory and further resources.

References

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

http://www.securitytracker.com/id/1030970

vdb-entryx_refsource_SECTRACK

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

Timeline

Vulnerability published
Oct 5, 2014
Vulnerability Reserved
Mar 24, 2014