CVE-2011-0278 : Unspecified vulnerability in HP Web Jetadmin 10.2 Service Release 3 and 4 allows local users to bypass intended access r

Unspecified vulnerability in HP Web Jetadmin 10.2 Service Release 3 and 4 allows local users to bypass intended access restrictions via unknown vectors.

Published 2011-03-01 23:00:03

Updated 2011-03-18 02:56:42

Source HP Inc.

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2011-0278

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2011-0278

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:L/AC:L/Au:S/C:P/I:P/A:P	3.1	6.4	NIST
Access Vector: Local Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2011-0278

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02714670

Vendor Advisory
http://www.vupen.com/english/advisories/2011/0516

Webmail | OVH- OVH
Vendor Advisory
http://securitytracker.com/id?1025130

HP Web Jetadmin Lets Local Users Access Managed Resources - SecurityTracker
http://www.securityfocus.com/bid/46595

HP Web Jetadmin Unspecified Local Security Bypass Vulnerability

Products affected by CVE-2011-0278

HP » Web Jetadmin » Version: 10.2 Update SR4
cpe:2.3:a:hp:web_jetadmin:10.2:sr4:*:*:*:*:*:*
Matching versions
HP » Web Jetadmin » Version: 10.2 Update SR3
cpe:2.3:a:hp:web_jetadmin:10.2:sr3:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2011-0278

Exploit prediction scoring system (EPSS) score for CVE-2011-0278

CVSS scores for CVE-2011-0278

References for CVE-2011-0278

Products affected by CVE-2011-0278