Vulnerability Details : CVE-2011-1541
Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote attackers to bypass intended access restrictions, and consequently execute arbitrary code, via unknown vectors.
Vulnerability category: Execute code
Products affected by CVE-2011-1541
- cpe:2.3:a:hp:system_management_homepage:*:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.3.132:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.11:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.10:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.6-156:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.11-197:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.4-143:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.2-127:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.8-177:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.7-168:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.0-103\(a\):*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.0-103:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.5-146:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.10-186:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.9-178:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.12-118:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.0-118:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.0-109:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.12-200:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.5.146:b:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.5.146:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.11.197:a:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.12.201:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.10.186:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.0.1.104:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.10.186:c:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.8.179:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:3.0.0.64:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.0.121:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.4.143:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.2.127:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.6.156:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.14.20:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.15.210:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.15-210:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.0.2.106:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.10.186:b:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.7.168:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:3.0.0-68:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:3.0.1.73:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.0.0.96:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.0.0-95:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.1.0-103:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:3.0.2-77:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:3.0.1-73:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:3.0.2.77:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.1.0.102:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:3.0.2.77:b:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.1:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:2.1.14.204:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.2.1.14:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.2:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.2.0-12:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.2.1-14:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.2.0.13:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.2.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:6.2.2-2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-1541
21.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 96 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-1541
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
References for CVE-2011-1541
-
http://marc.info/?l=bugtraq&m=130331363227777&w=2
'[security bulletin] HPSBMA02662 SSRT100409 rev.1 - HP System Management Homepage (SMH) for Linux and' - MARCVendor Advisory
-
http://www.securityfocus.com/bid/47512
HP System Management Homepage (CVE-2011-1541) Remote Unauthorized Access Vulnerability
-
http://www.securitytracker.com/id?1025414
HP System Management Homepage Lets Remote Users Gain Unauthorized Access and Remote Authenticated Users Execute Arbitrary Code - SecurityTracker
-
http://securityreason.com/securityalert/8233
HP System Management Homepage (SMH) Multiple Vulns - CXSecurity.com
Jump to