Hp Business Service Management — known CVE vulnerabilities
Every CVE whose affected-product data names Hp Business Service Management, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2012-2561 — CVSS 10.0 (critical): HP Business Service Management (BSM) 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute…
CVE-2016-4405 — CVSS 8.8 (high): A remote code execution vulnerability was identified in HP Business Service Management (BSM) using Apache Commons Collection Java…
CVE-2016-4392 — CVSS 5.4 (medium): A remote cross site scripting vulnerability has been identified in HP Business Service Management software v9.1x, v9.20 - v9.25IP1.
CVE-2015-3269 — CVSS 5.0 (medium): Apache Flex BlazeDS, as used in flex-messaging-core.jar in Adobe LiveCycle Data Services (LCDS) 3.0.x before 3.0.0.354170, 4.5 before…
CVE-2011-0274 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 7.x through 7.55 and 8.x through 8.05, and Business…