This page lists publicly disclosed CVE vulnerabilities affecting hp sitescope (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2015-2802 | An Information Disclosure vulnerability exists in HP SiteScope 11.2 and 11.3 on Windows, Linux and Solaris, HP Asset Manager 9.30 through 9.32, 9.40 through 9.41, 9.50, and Asset Manager Cloudsystem Chargeback 9.40, which could let a remote malicious user obtain sensitive information. This is the TLS vulnerability known as the RC4 cipher Bar Mitzvah vulnerability. | [email protected] | 7.5 | 6.38% | 2020-02-04 | 2026-06-16 |
| CVE-2017-8952 | A Disclosure of Sensitive Information vulnerability in HPE SiteScope version v11.2x, v11.3x was found. | [email protected] | 7.5 | 4.93% | 2018-02-15 | 2026-06-16 |
| CVE-2017-8951 | A Disclosure of Sensitive Information vulnerability in HPE SiteScope version v11.2x, v11.3x was found. | [email protected] | 7.8 | 0.69% | 2018-02-15 | 2026-06-16 |
| CVE-2017-8950 | A Disclosure of Sensitive Information vulnerability in HPE SiteScope version v11.2x, v11.3x was found. | [email protected] | 5.5 | 0.68% | 2018-02-15 | 2026-06-16 |
| CVE-2017-8949 | A Disclosure of Sensitive Information vulnerability in HPE SiteScope version v11.2x, v11.3x was found. | [email protected] | 5.5 | 0.67% | 2018-02-15 | 2026-06-16 |
| CVE-2017-14349 | An authentication vulnerability in HPE SiteScope product versions 11.2x and 11.3x, allows read-only accounts to view all SiteScope interfaces and monitors, potentially exposing sensitive data. | [email protected] | 9.8 | 2.64% | 2017-09-29 | 2026-06-16 |
| CVE-2015-2120 | Unspecified vulnerability in HP SiteScope 11.1x before 11.13, 11.2x before 11.24.391, and 11.3x before 11.30.521 allows remote authenticated users to gain privileges via unknown vectors, aka ZDI-CAN-2567. | [email protected] | 8.7 | 3.46% | 2015-05-25 | 2026-06-16 |
| CVE-2014-7882 | Unspecified vulnerability in HP SiteScope 11.1x and 11.2x allows remote authenticated users to gain privileges via unknown vectors. | [email protected] | 5.5 | 1.99% | 2015-02-01 | 2026-06-16 |
| CVE-2014-2614 | Unspecified vulnerability in HP SiteScope 11.1x through 11.13 and 11.2x through 11.24 allows remote attackers to bypass authentication via unknown vectors, aka ZDI-CAN-2140. | [email protected] | 7.5 | 4.85% | 2014-07-07 | 2026-06-16 |
| CVE-2013-6207 | Unspecified vulnerability in the loadFileContents function in the SOAP implementation in HP SiteScope 10.1x, 11.1x, and 11.21 allows remote attackers to read arbitrary files or cause a denial of service via unknown vectors, aka ZDI-CAN-2084. | [email protected] | 9.4 | 3.37% | 2014-03-11 | 2026-06-16 |
| CVE-2013-4835 | The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x before 11.22 allows remote attackers to bypass authentication and execute arbitrary code via a direct request to the issueSiebelCmd method, aka ZDI-CAN-1765. | [email protected] | 7.5 | 71.00% | 2013-11-04 | 2026-06-16 |
| CVE-2013-2367 | Multiple unspecified vulnerabilities in HP SiteScope 11.20 and 11.21, when SOAP is used, allow remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1678. | [email protected] | 10.0 | 68.89% | 2013-07-31 | 2026-06-16 |
| CVE-2012-3264 | Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1472. | [email protected] | 7.5 | 5.59% | 2012-09-25 | 2026-06-16 |
| CVE-2012-3263 | Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1465. | [email protected] | 10.0 | 8.58% | 2012-09-25 | 2026-06-16 |
| CVE-2012-3262 | Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1464. | [email protected] | 10.0 | 8.58% | 2012-09-25 | 2026-06-16 |
| CVE-2012-3261 | Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1463. | [email protected] | 10.0 | 38.38% | 2012-09-25 | 2026-06-16 |
| CVE-2012-3260 | Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1462. | [email protected] | 10.0 | 38.38% | 2012-09-25 | 2026-06-16 |
| CVE-2012-3259 | Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1461. | [email protected] | 10.0 | 60.22% | 2012-09-25 | 2026-06-16 |
| CVE-2011-2401 | Session fixation vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to hijack web sessions via unspecified vectors. | [email protected] | 8.3 | 4.13% | 2011-07-29 | 2026-06-16 |
| CVE-2011-2400 | Cross-site scripting (XSS) vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | [email protected] | 4.3 | 3.25% | 2011-07-29 | 2026-06-16 |