Skip to main content
CVE-2012-3274 CRITICAL POC THREAT Emergency

Stack-based buffer overflow in uam.exe in the User Access Manager (UAM) component in HP Intelligent Management Center (IMC) before 5.1 E0101P01 allows remote attackers to execute arbitrary code via. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 73.4%.

Buffer Overflow HP RCE Intelligent Management Center
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
73.4%
Threat
5.7
CVE-2012-3275 CRITICAL Act Now

Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.1x and 9.20 allows remote attackers to execute arbitrary code via unknown vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 25.4% and no vendor patch available.

HP RCE Network Node Manager I
NVD
CVSS 2.0
10.0
EPSS
25.4%
CVE-2012-5688 HIGH PATCH This Week

ISC BIND 9.8.x before 9.8.4-P1 and 9.9.x before 9.9.2-P1, when DNS64 is enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Bind Ubuntu Linux
NVD
CVSS 2.0
7.8
EPSS
7.6%
CVE-2012-3273 MEDIUM This Month

Multiple unspecified vulnerabilities on the HP LaserJet Pro 400 MFP M425 with firmware 20120625 and LaserJet 400 M401 with firmware 20120621 allow remote attackers to obtain sensitive information via. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure HP Laserjet Pro Mfp M401 Laserjet Pro Mfp M425
NVD
CVSS 2.0
5.0
EPSS
0.7%
CVE-2012-3272 MEDIUM This Month

Cross-site scripting (XSS) vulnerability on the HP Color LaserJet CM3530 with firmware before 53.190.9, Color LaserJet CM60xx with firmware before 52.210.9, Color LaserJet CP3525 with firmware before. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

HP XSS Color Laserjet Cm3530 Color Laserjet Cm60Xx Color Laserjet Cp3525 +4
NVD
CVSS 2.0
4.3
EPSS
0.6%
CVE-2012-5176 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in KENT-WEB ACCESS REPORT 5.02 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to tag embedding. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Access Report
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2012-5175 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in KENT-WEB ACCESS REPORT 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to access-log data. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Access Report
NVD
CVSS 2.0
4.3
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy