Executive Scorecard

executive_scorecard

Vendor: Hp • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2014-2611 1Hp 1Executive Scorecard May 6, 2026 Jun 19, 2014 N/A· v4 N/A· v3 9.0 HIGH· v2 Directory traversal vulnerability in the fndwar web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code, or obtain sensitive information or delete data, via uns...Show more Directory traversal vulnerability in the fndwar web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code, or obtain sensitive information or delete data, via unspecified vectors, aka ZDI-CAN-2120.Show less
CVE-2014-2610 1Hp 1Executive Scorecard May 6, 2026 Jun 19, 2014 N/A· v4 N/A· v3 7.1 HIGH· v2 Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by uploading an executable file...Show more Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by uploading an executable file, aka ZDI-CAN-2117.Show less
CVE-2014-2609 1Hp 1Executive Scorecard May 6, 2026 Jun 19, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 The Java Glassfish Admin Console in HP Executive Scorecard 9.40 and 9.41 does not require authentication, which allows remote attackers to execute arbitrary code via a session on TCP port 10001, aka ZDI-CAN-2116.