CVE-2024-13804

CVE-2024-13804 is an unauthenticated remote code execution vulnerability affecting Hewlett Packard Enterprise Insight Cluster Management Utility (CMU). Public references indicate impact on CMU version 8.2 and describe exploitation with network access and no authentication to run code with high pr...

PT-2025-13633 · Hewlett Packard · Hpe Insight Cluster Management Utility

Name of the Vulnerable Software and Affected Versions: HPE Insight Cluster Management Utility CMU version 8.2 Description: The issue is related to an unauthenticated Remote Code Execution RCE vulnerability in HPE Insight Cluster Management Utility CMU. This vulnerability allows unauthenticated...

Ubuntu: Security Advisory (USN-7350-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

HPE Insight Remote Support Detection

Binary data hpeinsightremotesupportdetect.nbin...

HPE Insight Remote Support XXE (CVE-2024-53675)

Binary data hpeinsightremotesupportcve-2024-53675.nbin...

The vulnerability of the validateAgainstXSD method implemented in HPE Insight Remote Support, a software solution for remote monitoring, management, and support of servers and data storage systems, allows attackers to disclose sensitive information that should be protected.

The vulnerability of the validateAgainstXSD method implemented in HPE Insight Remote Support, a software solution for remote monitoring, management, and support of servers and data storage systems, is related to incorrect restrictions on XML references to external objects. Exploiting this...

CVE-2025-1836

A vulnerability was found in Incorta 2023.4.3. It has been classified as problematic. Affected is an unknown function of the component Edit Insight Handler. The manipulation of the argument Service Name leads to csv injection. It is possible to launch the attack remotely. The vendor was contacted...

CVE-2025-1836

CVE-2025-1836 affects Incorta 2023.4.3, with the vulnerability residing in the Edit Insight Handler component and specifically the manipulation of the Service Name argument, which can lead to CSV injection. The issue is exploitable remotely. Multiple connected sources confirm the condition withou...

CVE-2025-1836 Incorta Edit Insight csv injection

A vulnerability was found in Incorta 2023.4.3. It has been classified as problematic. Affected is an unknown function of the component Edit Insight Handler. The manipulation of the argument Service Name leads to csv injection. It is possible to launch the attack remotely. The vendor was contacted...

CVE-2025-1836 Incorta Edit Insight csv injection

A vulnerability was found in Incorta 2023.4.3. It has been classified as problematic. Affected is an unknown function of the component Edit Insight Handler. The manipulation of the argument Service Name leads to csv injection. It is possible to launch the attack remotely. The vendor was contacted...

Incorta 安全漏洞

Incorta is an enterprise-grade data analytics and business intelligence platform from Incorta USA that rapidly enables data insights and decision support. A security vulnerability exists in Incorta version 2023.4.3, which stems from improper handling of the Service Name parameter in the Edit...

OpenBSD OpenSSH 9.5p1 - 9.9p1 DoS Vulnerability

OpenBSD OpenSSH is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2025-1142)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-11622

An XML external entity injection XXE vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases...

Ubuntu: Security Advisory (USN-7234-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-53674

An XML external entity injection XXE vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases...

CVE-2024-53675

An XML external entity injection XXE vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases...

CVE-2024-53673

A java deserialization vulnerability in HPE Remote Insight Support may allow an unauthenticated attacker to execute code...

Drupal Information Disclosure Vulnerability (GHSA-mg8j-w93w-xjgc) - Windows - Version Check

Drupal is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:drupal:drupal";...

Unraid OS 6.8.0 Web UI Authentication Bypass Vulnerability - Version Check

Unraid OS is prone to an authentication bypass vulnerability in the Web UI. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...