Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Java Glassfish Admin Console in HP Executive Scorecard 9.40 and 9.41 does not require authentication, which allows remote attackers to execute arbitrary code via a session on TCP port 10001, aka ZDI-CAN-2116.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HP Executive Scorecard 授权问题漏洞
Vulnerability Description
HP Executive Scorecard(IT主管评分卡)是美国惠普(HP)公司的一套IT流程性能管理解决方案。该方案可自动收集IT系统中的数据,形成关键性能指标,并提供评分卡、仪表板、以及IT财务管理等功能。 HP Executive Scorecard 9.40和9.41版本的Java Glassfish Admin Console中存在安全漏洞,该漏洞源于程序没有要求身份验证。远程攻击者可借助TCP 10001端口上的会话利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A