Auth bypass in Hp Sitescope

CVE-2014-2614

Unspecified vulnerability in HP SiteScope 11.1x through 11.13 and 11.2x through 11.24 allows remote attackers to bypass authentication via unknown vectors, aka ZDI-CAN-2140.

Vulnerability class: Broken Authentication

EPSS: 0.010 (77.8th percentile) — read the EPSS interpretation.

Affected products

Hp Sitescope — versions 11.10, 11.11, 11.12
N/a — versions n/a

Weakness classification (CWE)

CWE-287 — Improper Authentication

References

68361 (vdb-entry, x_refsource_BID)
HPSBMU03059 (Vendor Advisory, x_refsource_HP, vendor-advisory)
1030519 (vdb-entry, x_refsource_SECTRACK)