Vulnerabilites related to Hewlett Packard Enterprise - System Management Homepage for Windows and Linux
cve-2017-12553
Vulnerability from cvelistv5
Published
2018-02-15 22:00
Modified
2024-09-16 22:09
Severity ?
Summary
A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
Impacted products
Vendor Product Version
Hewlett Packard Enterprise System Management Homepage for Windows and Linux Version: prior to 7.6.1
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T18:43:56.319Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "1039437",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id/1039437",
               },
               {
                  name: "101029",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/101029",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "System Management Homepage for Windows and Linux",
               vendor: "Hewlett Packard Enterprise",
               versions: [
                  {
                     status: "affected",
                     version: "prior to 7.6.1",
                  },
               ],
            },
         ],
         datePublic: "2017-09-26T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "local authentication bypass",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-02-16T15:57:01",
            orgId: "eb103674-0d28-4225-80f8-39fb86215de0",
            shortName: "hpe",
         },
         references: [
            {
               name: "1039437",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id/1039437",
            },
            {
               name: "101029",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/101029",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "security-alert@hpe.com",
               DATE_PUBLIC: "2017-09-26T00:00:00",
               ID: "CVE-2017-12553",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "System Management Homepage for Windows and Linux",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "prior to 7.6.1",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Hewlett Packard Enterprise",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "local authentication bypass",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "1039437",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id/1039437",
                  },
                  {
                     name: "101029",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/101029",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "eb103674-0d28-4225-80f8-39fb86215de0",
      assignerShortName: "hpe",
      cveId: "CVE-2017-12553",
      datePublished: "2018-02-15T22:00:00Z",
      dateReserved: "2017-08-05T00:00:00",
      dateUpdated: "2024-09-16T22:09:07.466Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2017-12549
Vulnerability from cvelistv5
Published
2018-02-15 22:00
Modified
2024-09-16 18:54
Severity ?
Summary
A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
Impacted products
Vendor Product Version
Hewlett Packard Enterprise System Management Homepage for Windows and Linux Version: prior to 7.6.1
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T18:43:55.930Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "1039437",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id/1039437",
               },
               {
                  name: "101029",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/101029",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "System Management Homepage for Windows and Linux",
               vendor: "Hewlett Packard Enterprise",
               versions: [
                  {
                     status: "affected",
                     version: "prior to 7.6.1",
                  },
               ],
            },
         ],
         datePublic: "2017-09-26T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "local authentication bypass",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-02-16T15:57:01",
            orgId: "eb103674-0d28-4225-80f8-39fb86215de0",
            shortName: "hpe",
         },
         references: [
            {
               name: "1039437",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id/1039437",
            },
            {
               name: "101029",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/101029",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "security-alert@hpe.com",
               DATE_PUBLIC: "2017-09-26T00:00:00",
               ID: "CVE-2017-12549",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "System Management Homepage for Windows and Linux",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "prior to 7.6.1",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Hewlett Packard Enterprise",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "local authentication bypass",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "1039437",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id/1039437",
                  },
                  {
                     name: "101029",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/101029",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "eb103674-0d28-4225-80f8-39fb86215de0",
      assignerShortName: "hpe",
      cveId: "CVE-2017-12549",
      datePublished: "2018-02-15T22:00:00Z",
      dateReserved: "2017-08-05T00:00:00",
      dateUpdated: "2024-09-16T18:54:56.497Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2017-12545
Vulnerability from cvelistv5
Published
2018-02-15 22:00
Modified
2024-09-17 04:25
Severity ?
Summary
A remote denial of service vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
Impacted products
Vendor Product Version
Hewlett Packard Enterprise System Management Homepage for Windows and Linux Version: prior to 7.6.1
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T18:43:55.919Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://www.tenable.com/security/research/tra-2017-30",
               },
               {
                  name: "1039437",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id/1039437",
               },
               {
                  name: "101029",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/101029",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "System Management Homepage for Windows and Linux",
               vendor: "Hewlett Packard Enterprise",
               versions: [
                  {
                     status: "affected",
                     version: "prior to 7.6.1",
                  },
               ],
            },
         ],
         datePublic: "2017-09-26T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "A remote denial of service vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "denial of service",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-02-16T15:57:01",
            orgId: "eb103674-0d28-4225-80f8-39fb86215de0",
            shortName: "hpe",
         },
         references: [
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://www.tenable.com/security/research/tra-2017-30",
            },
            {
               name: "1039437",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id/1039437",
            },
            {
               name: "101029",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/101029",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "security-alert@hpe.com",
               DATE_PUBLIC: "2017-09-26T00:00:00",
               ID: "CVE-2017-12545",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "System Management Homepage for Windows and Linux",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "prior to 7.6.1",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Hewlett Packard Enterprise",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A remote denial of service vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "denial of service",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.tenable.com/security/research/tra-2017-30",
                     refsource: "MISC",
                     url: "https://www.tenable.com/security/research/tra-2017-30",
                  },
                  {
                     name: "1039437",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id/1039437",
                  },
                  {
                     name: "101029",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/101029",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "eb103674-0d28-4225-80f8-39fb86215de0",
      assignerShortName: "hpe",
      cveId: "CVE-2017-12545",
      datePublished: "2018-02-15T22:00:00Z",
      dateReserved: "2017-08-05T00:00:00",
      dateUpdated: "2024-09-17T04:25:13.588Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2017-12546
Vulnerability from cvelistv5
Published
2018-02-15 22:00
Modified
2024-09-16 18:24
Severity ?
Summary
A local buffer overflow vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
Impacted products
Vendor Product Version
Hewlett Packard Enterprise System Management Homepage for Windows and Linux Version: prior to 7.6.1
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T18:43:55.856Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "1039437",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id/1039437",
               },
               {
                  name: "101029",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/101029",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "System Management Homepage for Windows and Linux",
               vendor: "Hewlett Packard Enterprise",
               versions: [
                  {
                     status: "affected",
                     version: "prior to 7.6.1",
                  },
               ],
            },
         ],
         datePublic: "2017-09-26T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "A local buffer overflow vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "local buffer overflow",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-02-16T15:57:01",
            orgId: "eb103674-0d28-4225-80f8-39fb86215de0",
            shortName: "hpe",
         },
         references: [
            {
               name: "1039437",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id/1039437",
            },
            {
               name: "101029",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/101029",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "security-alert@hpe.com",
               DATE_PUBLIC: "2017-09-26T00:00:00",
               ID: "CVE-2017-12546",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "System Management Homepage for Windows and Linux",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "prior to 7.6.1",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Hewlett Packard Enterprise",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A local buffer overflow vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "local buffer overflow",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "1039437",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id/1039437",
                  },
                  {
                     name: "101029",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/101029",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "eb103674-0d28-4225-80f8-39fb86215de0",
      assignerShortName: "hpe",
      cveId: "CVE-2017-12546",
      datePublished: "2018-02-15T22:00:00Z",
      dateReserved: "2017-08-05T00:00:00",
      dateUpdated: "2024-09-16T18:24:54.686Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2017-12548
Vulnerability from cvelistv5
Published
2018-02-15 22:00
Modified
2024-09-16 16:54
Severity ?
Summary
A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
Impacted products
Vendor Product Version
Hewlett Packard Enterprise System Management Homepage for Windows and Linux Version: prior to 7.6.1
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T18:43:55.577Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "1039437",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id/1039437",
               },
               {
                  name: "101029",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/101029",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "System Management Homepage for Windows and Linux",
               vendor: "Hewlett Packard Enterprise",
               versions: [
                  {
                     status: "affected",
                     version: "prior to 7.6.1",
                  },
               ],
            },
         ],
         datePublic: "2017-09-26T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "local arbitrary command execution",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-02-16T15:57:01",
            orgId: "eb103674-0d28-4225-80f8-39fb86215de0",
            shortName: "hpe",
         },
         references: [
            {
               name: "1039437",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id/1039437",
            },
            {
               name: "101029",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/101029",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "security-alert@hpe.com",
               DATE_PUBLIC: "2017-09-26T00:00:00",
               ID: "CVE-2017-12548",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "System Management Homepage for Windows and Linux",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "prior to 7.6.1",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Hewlett Packard Enterprise",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "local arbitrary command execution",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "1039437",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id/1039437",
                  },
                  {
                     name: "101029",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/101029",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "eb103674-0d28-4225-80f8-39fb86215de0",
      assignerShortName: "hpe",
      cveId: "CVE-2017-12548",
      datePublished: "2018-02-15T22:00:00Z",
      dateReserved: "2017-08-05T00:00:00",
      dateUpdated: "2024-09-16T16:54:01.775Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2017-12544
Vulnerability from cvelistv5
Published
2018-02-15 22:00
Modified
2024-09-17 02:47
Severity ?
Summary
A cross-site scripting vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
Impacted products
Vendor Product Version
Hewlett Packard Enterprise System Management Homepage for Windows and Linux Version: prior to 7.6.1
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T18:43:55.881Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "1039437",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id/1039437",
               },
               {
                  name: "101029",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/101029",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "System Management Homepage for Windows and Linux",
               vendor: "Hewlett Packard Enterprise",
               versions: [
                  {
                     status: "affected",
                     version: "prior to 7.6.1",
                  },
               ],
            },
         ],
         datePublic: "2017-09-26T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "A cross-site scripting vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "cross-site scripting",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-02-16T15:57:01",
            orgId: "eb103674-0d28-4225-80f8-39fb86215de0",
            shortName: "hpe",
         },
         references: [
            {
               name: "1039437",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id/1039437",
            },
            {
               name: "101029",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/101029",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "security-alert@hpe.com",
               DATE_PUBLIC: "2017-09-26T00:00:00",
               ID: "CVE-2017-12544",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "System Management Homepage for Windows and Linux",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "prior to 7.6.1",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Hewlett Packard Enterprise",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A cross-site scripting vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "cross-site scripting",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "1039437",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id/1039437",
                  },
                  {
                     name: "101029",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/101029",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "eb103674-0d28-4225-80f8-39fb86215de0",
      assignerShortName: "hpe",
      cveId: "CVE-2017-12544",
      datePublished: "2018-02-15T22:00:00Z",
      dateReserved: "2017-08-05T00:00:00",
      dateUpdated: "2024-09-17T02:47:05.154Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2017-12550
Vulnerability from cvelistv5
Published
2018-02-15 22:00
Modified
2024-09-16 20:31
Severity ?
Summary
A local security misconfiguration vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
Impacted products
Vendor Product Version
Hewlett Packard Enterprise System Management Homepage for Windows and Linux Version: prior to 7.6.1
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T18:43:55.888Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "1039437",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id/1039437",
               },
               {
                  name: "101029",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/101029",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "System Management Homepage for Windows and Linux",
               vendor: "Hewlett Packard Enterprise",
               versions: [
                  {
                     status: "affected",
                     version: "prior to 7.6.1",
                  },
               ],
            },
         ],
         datePublic: "2017-09-26T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "A local security misconfiguration vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "local security misconfiguration",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-02-16T15:57:01",
            orgId: "eb103674-0d28-4225-80f8-39fb86215de0",
            shortName: "hpe",
         },
         references: [
            {
               name: "1039437",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id/1039437",
            },
            {
               name: "101029",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/101029",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "security-alert@hpe.com",
               DATE_PUBLIC: "2017-09-26T00:00:00",
               ID: "CVE-2017-12550",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "System Management Homepage for Windows and Linux",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "prior to 7.6.1",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Hewlett Packard Enterprise",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A local security misconfiguration vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "local security misconfiguration",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "1039437",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id/1039437",
                  },
                  {
                     name: "101029",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/101029",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "eb103674-0d28-4225-80f8-39fb86215de0",
      assignerShortName: "hpe",
      cveId: "CVE-2017-12550",
      datePublished: "2018-02-15T22:00:00Z",
      dateReserved: "2017-08-05T00:00:00",
      dateUpdated: "2024-09-16T20:31:43.229Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2017-12552
Vulnerability from cvelistv5
Published
2018-02-15 22:00
Modified
2024-09-17 02:32
Severity ?
Summary
A local arbitrary execution of commands vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
Impacted products
Vendor Product Version
Hewlett Packard Enterprise System Management Homepage for Windows and Linux Version: prior to 7.6.1
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T18:43:55.943Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "1039437",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id/1039437",
               },
               {
                  name: "101029",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/101029",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "System Management Homepage for Windows and Linux",
               vendor: "Hewlett Packard Enterprise",
               versions: [
                  {
                     status: "affected",
                     version: "prior to 7.6.1",
                  },
               ],
            },
         ],
         datePublic: "2017-09-26T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "A local arbitrary execution of commands vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "local arbitrary execution of commands",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-02-16T15:57:01",
            orgId: "eb103674-0d28-4225-80f8-39fb86215de0",
            shortName: "hpe",
         },
         references: [
            {
               name: "1039437",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id/1039437",
            },
            {
               name: "101029",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/101029",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "security-alert@hpe.com",
               DATE_PUBLIC: "2017-09-26T00:00:00",
               ID: "CVE-2017-12552",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "System Management Homepage for Windows and Linux",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "prior to 7.6.1",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Hewlett Packard Enterprise",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A local arbitrary execution of commands vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "local arbitrary execution of commands",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "1039437",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id/1039437",
                  },
                  {
                     name: "101029",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/101029",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "eb103674-0d28-4225-80f8-39fb86215de0",
      assignerShortName: "hpe",
      cveId: "CVE-2017-12552",
      datePublished: "2018-02-15T22:00:00Z",
      dateReserved: "2017-08-05T00:00:00",
      dateUpdated: "2024-09-17T02:32:42.115Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2017-12547
Vulnerability from cvelistv5
Published
2018-02-15 22:00
Modified
2024-09-16 22:25
Severity ?
Summary
A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.
Impacted products
Vendor Product Version
Hewlett Packard Enterprise System Management Homepage for Windows and Linux Version: prior to 7.6.1
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T18:43:55.667Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "1039437",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id/1039437",
               },
               {
                  name: "101029",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/101029",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "System Management Homepage for Windows and Linux",
               vendor: "Hewlett Packard Enterprise",
               versions: [
                  {
                     status: "affected",
                     version: "prior to 7.6.1",
                  },
               ],
            },
         ],
         datePublic: "2017-09-26T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "local arbitrary command execution",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-02-16T15:57:01",
            orgId: "eb103674-0d28-4225-80f8-39fb86215de0",
            shortName: "hpe",
         },
         references: [
            {
               name: "1039437",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id/1039437",
            },
            {
               name: "101029",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/101029",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "security-alert@hpe.com",
               DATE_PUBLIC: "2017-09-26T00:00:00",
               ID: "CVE-2017-12547",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "System Management Homepage for Windows and Linux",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "prior to 7.6.1",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Hewlett Packard Enterprise",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "local arbitrary command execution",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "1039437",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id/1039437",
                  },
                  {
                     name: "101029",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/101029",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbmu03753en_us",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "eb103674-0d28-4225-80f8-39fb86215de0",
      assignerShortName: "hpe",
      cveId: "CVE-2017-12547",
      datePublished: "2018-02-15T22:00:00Z",
      dateReserved: "2017-08-05T00:00:00",
      dateUpdated: "2024-09-16T22:25:12.540Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}