Unrated severityNVD Advisory· Published Oct 2, 2014· Updated Jun 17, 2026
CVE-2014-2640
CVE-2014-2640
Description
Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 7.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:hp:system_management_homepage:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:hp:system_management_homepage:*:*:*:*:*:*:*:*range: <=7.3
- cpe:2.3:a:hp:system_management_homepage:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:7.2:*:*:*:*:*:*:*
- cpe:2.3:a:hp:system_management_homepage:7.2.1:*:*:*:*:*:*:*
- (no CPE)range: <7.4
Patches
Vulnerability mechanics
References
3- www.kb.cert.org/vuls/id/125228nvdThird Party AdvisoryUS Government Resource
- www.securitytracker.com/id/1030960nvd
- h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplaynvd
News mentions
0No linked articles in our index yet.