PT-2015-1332 · Hewlett Packard · Hp Sitescope

Publicado

2015-05-25

Atualizado

2016-12-31

CVE-2015-2120

CVSS v2.0

8.7

Alta

Vetor

AV:N/AC:L/Au:S/C:C/I:P/A:C

Name of the Vulnerable Software and Affected Versions HP SiteScope versions 11.1x through 11.12 HP SiteScope versions 11.2x through 11.24.390 HP SiteScope versions 11.3x through 11.30.520

Description The issue is related to insufficient access restrictions to certain features in the HP SiteScope system monitoring solution. It allows a remote attacker to elevate their privileges.

Recommendations For HP SiteScope versions 11.1x through 11.12, update to version 11.13 or later. For HP SiteScope versions 11.2x through 11.24.390, update to version 11.24.391 or later. For HP SiteScope versions 11.3x through 11.30.520, update to version 11.30.521 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

BDU:2015-10420

CVE-2015-2120

ZDI-15-239

Produtos afetados

Hp Sitescope

PT-2015-1332 · Hewlett Packard · Hp Sitescope

CVE-2015-2120

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7