CVE-2014-2610CVE-2014-2610

Affected configuration(s):

cpe:/a:hp:executive_scorecard:9.40
cpe:/a:hp:executive_scorecard:9.41

Date published: 2014-06-19T06:50:04.237-04:00

Date last modified: 2014-06-26T00:49:40.803-04:00

CVSS Score: 7.1

Principal attack vector: NETWORK

Complexity:  HIGH

Reference URL: http://www.securityfocus.com/bid/68093

Summary: Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by uploading an executable file, aka ZDI-CAN-2117.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *