|CVSS SCORE||7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P)|
Application Information Optimizer
The specific flaw exists within the ability to access configuration pages without authentication. The issue lies in a failure to remove files after the initial configuration has occurred. An attacker can leverage this vulnerability to execute code under the context of the user running the service.
Hewlett-Packard has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||Andrea Micalizzi aka rgod