CVE-2011-3846
Description
Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) 6.2.2.7 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts.
Risk Information
Base Score
8.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.119
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Update HP System Management Homepage Detection (x64) 6.2.2.7 to latest version | Windows |
| Update HP System Management Homepage Detection 6.2.2.7 to latest version | Windows |
| Update HP System Management Homepage Detection 6.2.2.7 to latest version (For Ubuntu) | Linux |
| Update HP System Management Homepage Detection 6.2.2.7 to latest version (For Debian) | Linux |
| Update HP System Management Homepage Detection 6.2.2.7 to latest version (For Centos) | Linux |
| Update HP System Management Homepage Detection 6.2.2.7 to latest version (For RedHat) | Linux |
| Update HP System Management Homepage Detection 6.2.2.7 to latest version (For Suse) | Linux |
| Multiple Vulnerabilities affected in system_management_homepage 6.2.2.7 | NCM |
| Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-3846) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234