Description
Cross-site request forgery (CSRF) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
References (4)
Core 4
Core References
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=127239985506823&w=2
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/39645
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1023927
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/39736
Scores
EPSS
0.0013
EPSS Percentile
31.7%
Details
CWE
CWE-352
Status
published
Products (10)
hp/systems_insight_manager
hp/systems_insight_manager
2.5
hp/systems_insight_manager
2.5.2.0
hp/systems_insight_manager
4.0 (2 CPE variants)
hp/systems_insight_manager
4.1 (2 CPE variants)
hp/systems_insight_manager
4.2 (3 CPE variants)
hp/systems_insight_manager
5.0 (6 CPE variants)
hp/systems_insight_manager
5.1
hp/systems_insight_manager
5.2
hp/systems_insight_manager
< 5.2
Published
Apr 28, 2010
Tracked Since
Feb 18, 2026