CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-2719

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0880%
EPSS Percentile7.97th
Published2007年5月16日
Last Modified2026年4月23日

Vulnerability Description

Session fixation vulnerability in HP Systems Insight Manager (SIM) 4.2 and 5.0 SP4 and SP5 allows remote attackers to hijack web sessions by setting the JSESSIONID cookie.

Affected Platforms (CPE)

📦
Hp

Systems Insight Manager

= 4.2
📦
Hp

Systems Insight Manager

= 5.0
📦
Hp

Systems Insight Manager

= 5.0

References & Advisories

🔗 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01049713
🔗 http://osvdb.org/36061
🔗 http://secunia.com/advisories/25275
🔗 http://www.acrossecurity.com/aspr/ASPR-2007-05-14-1-PUB.txt
🔗 http://www.securityfocus.com/archive/1/468974/100/0/threaded
🔗 http://www.securityfocus.com/bid/23988
🔗 http://www.securitytracker.com/id?1018062
🔗 http://www.vupen.com/english/advisories/2007/1823

相关漏洞威胁

CVE-2016-43669.8

HPE Systems Insight Manager (SIM) before 7.5.1 allows remote attackers to obtain sensitive information, modify data, or cause a de...

CVE-2020-72009.8

A potential security vulnerability has been identified in HPE Systems Insight Manager (SIM) version 7.6. The vulnerability could b...

CVE-2016-20189.1

HPE Systems Insight Manager (SIM) before 7.5.1 allows remote attackers to obtain sensitive information or modify data via unspecif...

CVE-2012-19998.5

Unspecified vulnerability in HP Systems Insight Manager (SIM) before 7.0 allows remote authenticated users to obtain sensitive inf...