CSRF Vulnerability in HP System Management Homepage (SMH) Allows Remote Authentication Hijacking

CSRF Vulnerability in HP System Management Homepage (SMH) Allows Remote Authentication Hijacking

CVE-2014-7874 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 3.2.3 on HP-UX B.11.23, and before 3.2.8 on HP-UX B.11.31, allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Learn more about our Web Application Penetration Testing UK.