CVE-2007-4931

critical

Description

HP System Management Homepage (SMH) for Windows, when used in conjunction with HP Version Control Agent or Version Control Repository Manager, leaves old OpenSSL software active after an OpenSSL update, which has unknown impact and attack vectors, probably related to previous vulnerabilities for OpenSSL.

References

http://www.securityfocus.com/bid/25675

http://securitytracker.com/id?1018696

http://osvdb.org/45941

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01164065

Details

Source: Mitre, NVD

Published: 2007-09-18

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N

Severity: Low

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00149