CVE-2014-2631 : Unspecified vulnerability in HP Application Lifecycle Management (aka Quality Ce

Unspecified vulnerability in HP Application Lifecycle Management (aka Quality Center) 11.5x and 12.0x allows local users to gain privileges via unknown vectors, aka ZDI-CAN-2138.

Published 2014-08-12 00:55:04

Updated 2025-04-12 10:46:41

Source HP Inc.

View at NVD, CVE.org

Products affected by CVE-2014-2631

HP » Application Lifecycle Management » Version: 11.50
cpe:2.3:a:hp:application_lifecycle_management:11.50:*:*:*:*:*:*:*
Matching versions
HP » Application Lifecycle Management » Version: 12.00
cpe:2.3:a:hp:application_lifecycle_management:12.00:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2014-2631

EPSS FAQ

0.36%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 55 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2014-2631

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2014-2631

http://www.securitytracker.com/id/1030698

HP Application Lifecycle Management Unspecified Flaw Lets Local Users Gain Elevated Privileges - SecurityTracker
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04394553

HP Support for Technical Help and Troubleshooting | HP® Customer Service.
Vendor Advisory

Jump to

Vulnerability Details : CVE-2014-2631

Products affected by CVE-2014-2631

Exploit prediction scoring system (EPSS) score for CVE-2014-2631

CVSS scores for CVE-2014-2631

References for CVE-2014-2631