Arbitrary File Read Vulnerability in HP Network Virtualization for LoadRunner and Performance Center 8.61 and 11.52

Arbitrary File Read Vulnerability in HP Network Virtualization for LoadRunner and Performance Center 8.61 and 11.52

CVE-2015-2121 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:N/A:N

HP Network Virtualization for LoadRunner and Performance Center 8.61 and 11.52 allows remote attackers to read arbitrary files via a crafted filename in a URL to the (1) HttpServlet or (2) NetworkEditorController component, aka ZDI-CAN-2569.

Learn more about our Network Penetration Testing.