CVE-2014-7874

Name of the Vulnerable Software and Affected Versions HP System Management Homepage (SMH) versions prior to 3.2.3 on HP-UX B.11.23 HP System Management Homepage (SMH) versions prior to 3.2.8 on HP-UX B.11.31

Description A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of victims via unknown vectors.

Recommendations For HP System Management Homepage (SMH) versions prior to 3.2.3 on HP-UX B.11.23, update to version 3.2.3 or later. For HP System Management Homepage (SMH) versions prior to 3.2.8 on HP-UX B.11.31, update to version 3.2.8 or later.