Lucene search
K

97 matches found

Zero Day Initiative
Zero Day Initiative
added 2025/07/17 12:0 a.m.7 views

Hewlett Packard Enterprise AutoPass License Server Hard-coded Credentials Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Hewlett Packard Enterprise AutoPass License Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the hsqldb service, which listens on TCP po...

7.5CVSS7.6AI score0.00602EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/07/17 12:0 a.m.8 views

Hewlett Packard Enterprise AutoPass License Server Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Hewlett Packard Enterprise AutoPass License Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web service, which listens on TCP port 5814 by...

7.3CVSS7.3AI score0.00421EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/07/17 12:0 a.m.10 views

Hewlett Packard Enterprise AutoPass License Server Hard-coded Credentials Authentication Bypass Vulnerability

This vulnerability allows remote attackers to disclose sensitive information or edit configuration on affected installations of Hewlett Packard Enterprise AutoPass License Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web service, which...

7.3CVSS6.6AI score0.00428EPSS
Exploits0References1
OSV
OSV
added 2025/07/16 6:15 p.m.0 views

CVE-2025-37107

An authentication bypass vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

9.8CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2025/07/16 6:15 p.m.6 views

CVE-2025-37105

An hsqldb-related remote code execution vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

9.8CVSS0.00602EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 6:15 p.m.5 views

CVE-2025-37107

An authentication bypass vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

9.8CVSS0.00421EPSS
Exploits0References1
OSV
OSV
added 2025/07/16 6:15 p.m.4 views

CVE-2025-37106

An authentication bypass and disclosure of information vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

9.8CVSS5.8AI score0.00428EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 6:15 p.m.5 views

CVE-2025-37106

An authentication bypass and disclosure of information vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

9.8CVSS0.00428EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 5:55 p.m.2 views

CVE-2025-37107

An authentication bypass vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

7.3CVSS7.3AI score0.00421EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/16 5:55 p.m.7 views

CVE-2025-37107

An authentication bypass vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

7.3CVSS0.00421EPSS
Exploits0References1
CVE
CVE
added 2025/07/16 5:55 p.m.24 views

CVE-2025-37107

CVE-2025-37107 : Authentication bypass in Hewlett Packard Enterprise AutoPass License Server (APLS) prior to 9.18. The flaw exists in the web service listening on TCP port 5814, arising from making an authorization decision based on a non-canonical URL. Remote attackers could bypass authenticatio...

9.8CVSS6.8AI score0.00421EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/16 5:53 p.m.8 views

CVE-2025-37106

An authentication bypass and disclosure of information vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

7.3CVSS0.00428EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 5:53 p.m.5 views

CVE-2025-37106

An authentication bypass and disclosure of information vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

7.3CVSS7.1AI score0.00428EPSS
Exploits0References1
CVE
CVE
added 2025/07/16 5:53 p.m.25 views

CVE-2025-37106

CVE-2025-37106 affects Hewlett Packard Enterprise AutoPass License Server (APLS) prior to 9.18. Reports describe an authentication bypass and information disclosure via the web service (default port 5814) due to hard-coded credentials, allowing remote disclosure or configuration edits. Remediatio...

9.8CVSS6.5AI score0.00428EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/16 5:42 p.m.8 views

CVE-2025-37105

An hsqldb-related remote code execution vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

7.5CVSS0.00602EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/16 5:42 p.m.4 views

CVE-2025-37105

An hsqldb-related remote code execution vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

9.8CVSS6.4AI score0.00602EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/16 5:42 p.m.3 views

CVE-2025-37105

An hsqldb-related remote code execution vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...

7.5CVSS8AI score0.00602EPSS
Exploits0References1
CVE
CVE
added 2025/07/16 5:42 p.m.27 views

CVE-2025-37105

HPE AutoPass License Server (APLS) prior to 9.18 is affected by an hsqldb-related remote code execution vulnerability. The ZDI advisory details that the flaw exists in the hsqldb service (listening on TCP port 9001 by default) and is exploitable by network-adjacent attackers without authenticatio...

9.8CVSS7.4AI score0.00602EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/07/16 10:56 a.m.5 views

CVE-2024-51770

An information disclosure vulnerability exists in HPE AutoPass License Server APLS prior to 9.17...

7.5CVSS5.9AI score0.00363EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/16 10:56 a.m.5 views

CVE-2024-51769

An information disclosure vulnerability exists in HPE AutoPass License Server APLS prior to 9.17...

7.5CVSS5.9AI score0.00363EPSS
Exploits0References1
Rows per page
Query Builder