HP Version Control Repository Manager
by HPE
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-8515 | Hig | 0.57 | 8.8 | 0.02 | Feb 15, 2018 | A remote malicious file upload vulnerability in HPE Version Control Repository Manager (VCRM) was found. The problem impacts all versions prior to 7.6. | ||
| CVE-2016-8513 | Hig | 0.52 | 8.0 | 0.01 | Feb 15, 2018 | A Cross-Site Request Forgery (CSRF) vulnerability in HPE Version Control Repository Manager (VCRM) was found. The problem impacts all versions prior to 7.6. | ||
| CVE-2017-5787 | Med | 0.42 | 6.5 | 0.02 | Feb 15, 2018 | A remote denial of service vulnerability in HPE Version Control Repository Manager (VCRM) in all versions prior to 7.6 was found. | ||
| CVE-2016-8514 | Med | 0.42 | 6.5 | 0.02 | Feb 15, 2018 | A remote information disclosure in HPE Version Control Repository Manager (VCRM) was found. The problem impacts all versions prior to 7.6. | ||
| CVE-2015-5411 | 0.00 | — | 0.02 | Aug 26, 2015 | HP Version Control Repository Manager (VCRM) before 7.5.0 allows remote authenticated users to obtain sensitive information via unspecified vectors. |
- risk 0.57cvss 8.8epss 0.02
A remote malicious file upload vulnerability in HPE Version Control Repository Manager (VCRM) was found. The problem impacts all versions prior to 7.6.
- risk 0.52cvss 8.0epss 0.01
A Cross-Site Request Forgery (CSRF) vulnerability in HPE Version Control Repository Manager (VCRM) was found. The problem impacts all versions prior to 7.6.
- risk 0.42cvss 6.5epss 0.02
A remote denial of service vulnerability in HPE Version Control Repository Manager (VCRM) in all versions prior to 7.6 was found.
- risk 0.42cvss 6.5epss 0.02
A remote information disclosure in HPE Version Control Repository Manager (VCRM) was found. The problem impacts all versions prior to 7.6.
- CVE-2015-5411Aug 26, 2015risk 0.00cvss —epss 0.02
HP Version Control Repository Manager (VCRM) before 7.5.0 allows remote authenticated users to obtain sensitive information via unspecified vectors.