Skip to main content

Executive Scorecard

3 CVEs product

Monthly

CVE-2014-2611 CRITICAL Act Now

Directory traversal vulnerability in the fndwar web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code, or obtain sensitive information or. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal HP RCE Executive Scorecard
NVD
CVSS 2.0
9.0
EPSS
2.4%
CVE-2014-2610 HIGH This Week

Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Path Traversal HP RCE Executive Scorecard
NVD
CVSS 2.0
7.1
EPSS
1.8%
CVE-2014-2609 CRITICAL Act Now

The Java Glassfish Admin Console in HP Executive Scorecard 9.40 and 9.41 does not require authentication, which allows remote attackers to execute arbitrary code via a session on TCP port 10001, aka. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 25.0% and no vendor patch available.

HP RCE Java Authentication Bypass Executive Scorecard
NVD
CVSS 2.0
10.0
EPSS
25.0%
EPSS 2% CVSS 9.0
CRITICAL Act Now

Directory traversal vulnerability in the fndwar web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code, or obtain sensitive information or. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal HP RCE +1
NVD
EPSS 2% CVSS 7.1
HIGH This Week

Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Path Traversal HP RCE +1
NVD
EPSS 25% CVSS 10.0
CRITICAL Act Now

The Java Glassfish Admin Console in HP Executive Scorecard 9.40 and 9.41 does not require authentication, which allows remote attackers to execute arbitrary code via a session on TCP port 10001, aka. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 25.0% and no vendor patch available.

HP RCE Java +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy