CVE-2015-2140: Input Validation
First published: Thu Aug 27 2015(Updated: )
HP Systems Insight Manager (SIM) before 7.5.0, as used in HP Matrix Operating Environment before 7.5.0 and other products, allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors.
Credit: hp-security-alert@hp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP Systems Insight Manager | <=7.4 | |
| HP Matrix Operating Environment | <=7.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-2140?
CVE-2015-2140 is classified as a moderate severity vulnerability due to its potential to allow unauthorized access to sensitive information.
How do I fix CVE-2015-2140?
To mitigate CVE-2015-2140, update HP Systems Insight Manager to version 7.5.0 or later.
What products are affected by CVE-2015-2140?
CVE-2015-2140 affects HP Systems Insight Manager versions prior to 7.5.0 and HP Matrix Operating Environment versions before 7.5.0.
Can CVE-2015-2140 be exploited by remote attackers?
Yes, CVE-2015-2140 can be exploited by remote authenticated users to obtain sensitive information or modify data.
Is there a workaround for CVE-2015-2140?
There are no specific workarounds for CVE-2015-2140; upgrading to a fixed version is recommended.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/hp
- canonical/hp systems insight manager
- version/hp systems insight manager/7.4
- canonical/hp matrix operating environment
- version/hp matrix operating environment/7.4