Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2007-4931

HP System Management Homepage (SMH) for Windows, when used in conjunction with HP Version Control Agent or Version Control Repository Manager, leaves old OpenSSL software active after an OpenSSL update, which has unknown impact and attack vectors, probably related to previous vulnerabilities for OpenSSL.

Published

2007-09-18T18:17:00.000

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 2.1 (LOW)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

  • Access Vector: LOCAL
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: PARTIAL
  • Availability Impact: NONE
Exploitability Score

3.9

Impact Score

2.9

Weaknesses
  • Type: Primary
    NVD-CWE-Other
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application hp system_management_homepage 2.0.0 Yes
Application hp system_management_homepage 2.0.1 Yes
Application hp system_management_homepage 2.0.2 Yes
Application hp system_management_homepage 2.1 Yes
Application hp system_management_homepage 2.1.1 Yes
Application hp system_management_homepage 2.1.2 Yes
Application hp system_management_homepage 2.1.3 Yes
Application hp system_management_homepage 2.1.3.132 Yes
Application hp system_management_homepage 2.1.4 Yes
Application hp system_management_homepage 2.1.5 Yes
Application hp system_management_homepage 2.1.6 Yes
Application hp system_management_homepage 2.1.7 Yes
Application hp system_management_homepage 2.1.8 Yes
Application hp system_management_homepage 2.1.9 Yes
References