Back to search
CVE-2014-7878
Published: Nov 14, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The Application Lifecycle Service (ALS) in HP Helion Cloud Development Platform 1.0, when a virtual machine is derived from the Seed Node image, uses the same security keys across different customers' installations, which allows remote attackers to execute arbitrary code by leveraging these keys for a connection.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SSRT101812
vendor-advisory
x_refsource_HP
hp-helion-cve20147878-unauth-access(98636)
vdb-entry
x_refsource_XF
HPSBMU03190
vendor-advisory
x_refsource_HP
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now