RSS   Vulnerabilities for
'Utility computing service meter'
   RSS

2020-09-23
 
CVE-2020-24626

CWE-22
 

 
Unathenticated directory traversal in the ReceiverServlet class doPost() method can lead to arbitrary remote code execution in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9.

 
 
CVE-2020-24625

CWE-22
 

 
Unathenticated directory traversal in the ReceiverServlet class doGet() method can lead to arbitrary file reads in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9.

 
 
CVE-2020-24624

CWE-22
 

 
Unathenticated directory traversal in the DownloadServlet class execute() method can lead to arbitrary file reads in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9.

 

 >>> Vendor: HPE 10 Products
Smart update manager
Device entitlement gateway
Service governance framework
Universal internet of things
Oneview global dashboard
Utility computing service meter
Network orchestrator
Unified data management
Integrated lights-out amplifier
Nimbleos


Copyright 2024, cxsecurity.com

 

Back to Top