CVE-2014-7896CVE-2014-7896

Affected configuration(s):

cpe:/a:hp:xp7_global_link_manager_software:8.1.1
cpe:/a:hp:xp_p9000_device_manager:8.1.1
cpe:/a:hp:xp_p9000_replication_manager:7.6.1
cpe:/a:hp:xp_p9000_tiered_storage_manager:8.1.1

Date published: 2015-03-03T06:59:00.057-05:00

Date last modified: 2015-03-11T22:00:32.270-04:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://www.securitytracker.com/id/1031828

Summary: Multiple cross-site scripting (XSS) vulnerabilities in HP XP P9000 Command View Advanced Edition Software Online Help, as used in HP Device Manager 6.x through 8.x before 8.1.2-00, HP XP P9000 Tiered Storage Manager 6.x through 8.x before 8.1.2-00, HP XP P9000 Replication Manager 6.x and 7.x before 7.6.1-06, and HP XP7 Global Link Manager Software (aka HGLM) 6.x through 8.x before 8.1.2-00, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.