Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-6202

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2013-6202
Last Modified 28 Jul 2015 11:13:15
Published 23 Feb 2014 11:48:09
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2013-6202

Summary

Multiple cross-site request forgery (CSRF) vulnerabilities in HP Service Manager 9.30, 9.31, 9.32, and 9.33 allow remote attackers to hijack the authentication of unspecified victims for requests that (1) insert XSS sequences or (2) execute arbitrary code.

Vulnerable Systems

Application

  • Hp Service Manager 9.30

  • Hp Service Manager 9.31

  • Hp Service Manager 9.32

  • Hp Service Manager 9.33


References

HP - SSRT101437

HP - HPSBMU02964

SECTRACK - 1029803


Last Updated: 27 May 2016 11:08:48