Vulnerabilities (CVE)

Filtered by vendor Hp Subscribe
Filtered by product Executive Scorecard
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-2611 1 Hp 1 Executive Scorecard 2024-11-21 9.0 HIGH N/A
Directory traversal vulnerability in the fndwar web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code, or obtain sensitive information or delete data, via unspecified vectors, aka ZDI-CAN-2120.
CVE-2014-2610 1 Hp 1 Executive Scorecard 2024-11-21 7.1 HIGH N/A
Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by uploading an executable file, aka ZDI-CAN-2117.
CVE-2014-2609 1 Hp 1 Executive Scorecard 2024-11-21 10.0 HIGH N/A
The Java Glassfish Admin Console in HP Executive Scorecard 9.40 and 9.41 does not require authentication, which allows remote attackers to execute arbitrary code via a session on TCP port 10001, aka ZDI-CAN-2116.