CVE-2011-1543

HP Systems Insight Manager <6.3 - CSRF

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability in HP Systems Insight Manager (SIM) before 6.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/47513
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1025415
Vendor Advisory vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=130331642631603&w=2
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/8234

Scores

EPSS 0.0015
EPSS Percentile 35.9%

Details

CWE
CWE-352
Status published
Products (12)
hp/systems_insight_manager 2.5
hp/systems_insight_manager 2.5.2.0
hp/systems_insight_manager 4.0 (2 CPE variants)
hp/systems_insight_manager 4.1 (2 CPE variants)
hp/systems_insight_manager 4.2 (3 CPE variants)
hp/systems_insight_manager 5.0 (6 CPE variants)
hp/systems_insight_manager 5.1
hp/systems_insight_manager 5.2 (2 CPE variants)
hp/systems_insight_manager 5.3 (2 CPE variants)
hp/systems_insight_manager 6.0
... and 2 more
Published Apr 29, 2011
Tracked Since Feb 18, 2026