Lucene search

HpCVE-2015-5407

HistoryAug 22, 2015 - 11:59 p.m.

CVE-2015-5407

2015-08-2223:59:08

web.nvd.nist.gov

cve

2015

5407

hp centralview

fraud risk management

revenue leakage control

dealer performance audit

credit risk control

roaming fraud control

subscription fraud prevention

remote attackers

sensitive information

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:S/C:C/I:C/A:C

AI Score

6.2

Confidence

Low

EPSS

0.002

Percentile

59.2%

JSON

HP CentralView Fraud Risk Management 11.1, 11.2, and 11.3; CentralView Revenue Leakage Control 4.1, 4.2, and 4.3; CentralView Dealer Performance Audit 2.0 and 2.1; CentralView Credit Risk Control 2.1, 2.2, and 2.3; CentralView Roaming Fraud Control 2.1, 2.2, and 2.3; and CentralView Subscription Fraud Prevention 2.0 and 2.1 allow remote attackers to obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2015-5406 and CVE-2015-5408.

Affected configurations

Nvd

Node

hpcentralview_revenue_leakage_controlMatch4.1

hpcentralview_revenue_leakage_controlMatch4.2

hpcentralview_revenue_leakage_controlMatch4.3

Node

hpcentralview_fraud_risk_managementMatch11.1

hpcentralview_fraud_risk_managementMatch11.2

hpcentralview_fraud_risk_managementMatch11.3

Node

hpcentralview_subscription_fraud_preventionMatch2.0

hpcentralview_subscription_fraud_preventionMatch2.1

Node

hpcentralview_dealer_performance_auditMatch2.0

hpcentralview_dealer_performance_auditMatch2.1

Node

hpcentralview_roaming_fraud_controlMatch2.1

hpcentralview_roaming_fraud_controlMatch2.2

hpcentralview_roaming_fraud_controlMatch2.3

Node

hpcentralview_credit_risk_controlMatch2.1

hpcentralview_credit_risk_controlMatch2.2

hpcentralview_credit_risk_controlMatch2.3

VendorProductVersionCPE
hpcentralview_revenue_leakage_control4.1cpe:2.3:a:hp:centralview_revenue_leakage_control:4.1:*:*:*:*:*:*:*
hpcentralview_revenue_leakage_control4.2cpe:2.3:a:hp:centralview_revenue_leakage_control:4.2:*:*:*:*:*:*:*
hpcentralview_revenue_leakage_control4.3cpe:2.3:a:hp:centralview_revenue_leakage_control:4.3:*:*:*:*:*:*:*
hpcentralview_fraud_risk_management11.1cpe:2.3:a:hp:centralview_fraud_risk_management:11.1:*:*:*:*:*:*:*
hpcentralview_fraud_risk_management11.2cpe:2.3:a:hp:centralview_fraud_risk_management:11.2:*:*:*:*:*:*:*
hpcentralview_fraud_risk_management11.3cpe:2.3:a:hp:centralview_fraud_risk_management:11.3:*:*:*:*:*:*:*
hpcentralview_subscription_fraud_prevention2.0cpe:2.3:a:hp:centralview_subscription_fraud_prevention:2.0:*:*:*:*:*:*:*
hpcentralview_subscription_fraud_prevention2.1cpe:2.3:a:hp:centralview_subscription_fraud_prevention:2.1:*:*:*:*:*:*:*
hpcentralview_dealer_performance_audit2.0cpe:2.3:a:hp:centralview_dealer_performance_audit:2.0:*:*:*:*:*:*:*
hpcentralview_dealer_performance_audit2.1cpe:2.3:a:hp:centralview_dealer_performance_audit:2.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hp	centralview_revenue_leakage_control	4.1	cpe:2.3:a:hp:centralview_revenue_leakage_control:4.1:::::::*
hp	centralview_revenue_leakage_control	4.2	cpe:2.3:a:hp:centralview_revenue_leakage_control:4.2:::::::*
hp	centralview_revenue_leakage_control	4.3	cpe:2.3:a:hp:centralview_revenue_leakage_control:4.3:::::::*
hp	centralview_fraud_risk_management	11.1	cpe:2.3:a:hp:centralview_fraud_risk_management:11.1:::::::*
hp	centralview_fraud_risk_management	11.2	cpe:2.3:a:hp:centralview_fraud_risk_management:11.2:::::::*
hp	centralview_fraud_risk_management	11.3	cpe:2.3:a:hp:centralview_fraud_risk_management:11.3:::::::*
hp	centralview_subscription_fraud_prevention	2.0	cpe:2.3:a:hp:centralview_subscription_fraud_prevention:2.0:::::::*
hp	centralview_subscription_fraud_prevention	2.1	cpe:2.3:a:hp:centralview_subscription_fraud_prevention:2.1:::::::*
hp	centralview_dealer_performance_audit	2.0	cpe:2.3:a:hp:centralview_dealer_performance_audit:2.0:::::::*
hp	centralview_dealer_performance_audit	2.1	cpe:2.3:a:hp:centralview_dealer_performance_audit:2.1:::::::*

Rows per page:

1-10 of 161

References

www.securityfocus.com/bid/76356

h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04751893

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:S/C:C/I:C/A:C

AI Score

6.2

Confidence

Low

EPSS

0.002

Percentile

59.2%

JSON

Related for CVE-2015-5407