Kaspersky Threats

Solutions for:

Kaspersky ID:

KLA10458

Detect Date:

01/10/2014

Updated:

04/08/2025

Description

Multiple vulnerabilities was found in HP SMH. By exploiting these vulnerabilities malicious users can conduct XSS, CSRF and clicjacking attacks via unspecified vectors. These vulnerabilities can be exploited remotely.

Original advisories

HP bulletin

CVE list

CVE-2013-6712
warning
CVE-2013-6422
warning
CVE-2014-2641
high
CVE-2014-2640
warning
CVE-2014-2642
warning
CVE-2013-6420
high
CVE-2013-4545
warning

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com

Found an inaccuracy in the description of this vulnerability? Let us know!

Kaspersky ID:

KLA10458

Detect Date:

01/10/2014

Updated:

04/08/2025

Severity

critical

Solution

Update to latest version
Get HP SMH

Impacts

OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

XSS/CSS

Cross site scripting. Exploitation of vulnerabilities with this impact can lead to partial interception of information transmitted between user and site.

Affected products

HP System Management Homepage (SMH) versions earlier than 7.4

Kaspersky Next

Let’s go Next: redefine your business’s cybersecurity

Learn more

New Kaspersky!

Your digital life deserves complete protection!

Learn more

Confirm changes?

Your message has been sent successfully.

Multiple vulnerabilities in HP SMH

Description

Original advisories

Related products

CVE list

Read more