1161 matches found
CVE-2016-4375
Multiple unspecified vulnerabilities in HPE Integrated Lights-Out 3 aka iLO 3 firmware before 1.88, Integrated Lights-Out 4 aka iLO 4 firmware before 2.44, and Integrated Lights-Out 4 aka iLO 4 mRCA firmware before 2.32 allow remote attackers to obtain sensitive information, modify data, or cause...
CVE-2016-4375
HP’s CVE-2016-4375 covers multiple unspecified vulnerabilities in HP Integrated Lights-Out (iLO) 3 firmware prior to 1.88, iLO 4 prior to 2.44, and iLO 4 mRCA prior to 2.32. The description states that remote attackers can obtain sensitive information, modify data, or cause a denial of service vi...
The vulnerability in Microsoft.NET Framework software allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of protected information.
A vulnerability that allows for remote execution of code exists in the Microsoft .NET Framework. This vulnerability is related to incorrect handling of localized resource identifiers. Exploiting this vulnerability enables a malicious individual to gain full control over the system. They can then...
Authentication flaw
IBM Security QRadar Incident Forensics 7.2.x before 7.2.7 allows remote attackers to bypass authentication, and obtain sensitive information or modify data, via unspecified vectors...
CVE-2016-4525
Unspecified ActiveX controls in Advantech WebAccess before 8.120160519 allow remote authenticated users to obtain sensitive information or modify data via unknown vectors, related to the INTERFACESAFEFORUNTRUSTEDCALLER aka safe for scripting flag...
Design/Logic Flaw
Unspecified ActiveX controls in Advantech WebAccess before 8.120160519 allow remote authenticated users to obtain sensitive information or modify data via unknown vectors, related to the INTERFACESAFEFORUNTRUSTEDCALLER aka safe for scripting flag...
CVE-2016-4525
Summary: CVE-2016-4525, CVE-2016-4528 and CVE-2016-5810 affect Advantech WebAccess prior to version 8.1_20160519. The issues arise from unsafe ActiveX controls marked as safe-for-scripting (CVE-2016-4525), a buffer overflow via crafted DLLs (CVE-2016-4528), and information exposure where an authe...
Server side request forgery (ssrf)
HPE Service Manager Software 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, and 9.41 allows remote authenticated users to obtain sensitive information, modify data, and conduct server-side request forgery SSRF attacks via unspecified vectors, related to the Server, Web Client, Windows Client, and...
CVE-2016-4366
HPE Systems Insight Manager SIM before 7.5.1 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unspecified vectors...
CVE-2016-4363
HPE Insight Control server deployment allows remote attackers to modify data via unspecified vectors...
CVE-2016-4362
HPE Insight Control server deployment allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors...
CVE-2016-4358
HPE Matrix Operating Environment before 7.5.1 allows remote attackers to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2029...
CVE-2016-4357
HPE Matrix Operating Environment before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2028...
CVE-2016-2024
HPE Insight Control before 7.5.1 allow remote attackers to obtain sensitive information, modify data, or cause a denial of service via unspecified vectors...
CVE-2016-2021
HPE Systems Insight Manager SIM before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, CVE-2016-2019, CVE-2016-2020, CVE-2016-2022, and CVE-2016-2030...
CVE-2016-2021
HPE Systems Insight Manager SIM before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, CVE-2016-2019, CVE-2016-2020, CVE-2016-2022, and CVE-2016-2030...
CVE-2016-2019
HPE Systems Insight Manager SIM before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, CVE-2016-2020, CVE-2016-2021, CVE-2016-2022, and CVE-2016-2030...
CVE-2016-2019
HPE Systems Insight Manager SIM before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, CVE-2016-2020, CVE-2016-2021, CVE-2016-2022, and CVE-2016-2030...
Code injection
HPE Matrix Operating Environment before 7.5.1 allows remote attackers to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-4358...
Code injection
HPE Systems Insight Manager SIM before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, CVE-2016-2020, CVE-2016-2021, CVE-2016-2022, and CVE-2016-2030...