Unrated severityNVD Advisory· Published Jan 20, 2010· Updated Jun 16, 2026
CVE-2009-4000
CVE-2009-4000
Description
Directory traversal vulnerability in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to overwrite arbitrary files, and execute arbitrary code, via directory traversal sequences in the fileName parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:hp:power_manager:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:hp:power_manager:*:*:*:*:*:*:*:*range: <=4.2.9
- cpe:2.3:a:hp:power_manager:4.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:hp:power_manager:4.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:hp:power_manager:4.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:hp:power_manager:4.2.8:*:*:*:*:*:*:*
- (no CPE)range: <4.2.10
Patches
Vulnerability mechanics
References
5- marc.infonvdVendor Advisory
- secunia.com/advisories/37280nvdVendor Advisory
- secunia.com/secunia_research/2009-48/nvdVendor Advisory
- securitytracker.com/idnvd
- www.securityfocus.com/bid/37873nvd
News mentions
0No linked articles in our index yet.