CVE-2015-2108

Published: Mar 31, 2015Modified: May 6, 2026

3.5

Vector

AV:N/AC:M/Au:S/C:P/I:N/A:N

Exploitability: 6.8 / Impact: 2.9

Source: NVD

Description

Unspecified vulnerability in Powershell Operations in HP Operations Orchestration 9.x and 10.x allows remote authenticated users to obtain sensitive information via unknown vectors.

Affected (2)

Products: Hp: Operations Orchestration

1 product

Operations Orchestration

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Hp Operations Orchestration	Version 10.0
Hp Operations Orchestration	Version 9.0

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (6)

http://www.securityfocus.com/bid/73320

Source: hp-security-alert@hp.com

http://www.securitytracker.com/id/1031987

Source: hp-security-alert@hp.com

Third Party AdvisoryVDB Entry

https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04595417

Source: hp-security-alert@hp.com

Not Applicable

http://www.securityfocus.com/bid/73320

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id/1031987

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04595417

Source: af854a3a-2127-422b-91ae-364da2661108

Not Applicable

Timeline

No history available yet.