CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2025-37095 is a directory traversal information disclosure vulnerability in HPE StoreOnce Software. Public records describe vulnerable software as HPE StoreOnce Software and indicate a high-severity impact (confidentiality, integrity, and availability affected) with remote, unauthenticated or...

9.8CVSS6.8AI score0.0085EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/06/02 2:14 p.m.•8 views

CVE-2025-37095

A directory traversal information disclosure vulnerability exists in HPE StoreOnce Software...

5.9CVSS0.0085EPSS

Exploits0References1

Vulnrichment•added 2025/06/02 2:14 p.m.•4 views

CVE-2025-37095

A directory traversal information disclosure vulnerability exists in HPE StoreOnce Software...

5.9CVSS6.6AI score0.0085EPSS

Exploits0References1

CVE•added 2025/06/02 2:2 p.m.•54 views

CVE-2025-37094

CVE-2025-37094 describes a directory traversal vulnerability in HPE StoreOnce Software that could enable arbitrary file deletion. The issue is consistently reported across multiple sources (NVD, Red Hat, CNNVD, CVE listings) as a directory traversal flaw in StoreOnce. Severity metrics vary betwee...

9.1CVSS7.3AI score0.02699EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/06/02 2:2 p.m.•9 views

CVE-2025-37094

A directory traversal arbitrary file deletion vulnerability exists in HPE StoreOnce Software...

5.5CVSS0.02699EPSS

Exploits0References1

Vulnrichment•added 2025/06/02 2:2 p.m.•4 views

CVE-2025-37094

A directory traversal arbitrary file deletion vulnerability exists in HPE StoreOnce Software...

5.5CVSS5.7AI score0.02699EPSS

Exploits0References1

Vulnrichment•added 2025/06/02 1:56 p.m.•4 views

CVE-2025-37093

An authentication bypass vulnerability exists in HPE StoreOnce Software...

9.8CVSS9.7AI score0.00266EPSS

Exploits0References1

CVE•added 2025/06/02 1:56 p.m.•66 views

CVE-2025-37093

CVE-2025-37093 affects HPE StoreOnce Software. The issue arises from improper implementation in the machineAccountCheck method, enabling remote authentication bypass. HPE patches this as part of a broader fix (pre-4.3.11 versions affected; 4.3.11 and later include the fix). THN notes the vulnerab...

9.8CVSS7.3AI score0.00266EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/06/02 1:56 p.m.•10 views

CVE-2025-37093

An authentication bypass vulnerability exists in HPE StoreOnce Software...

9.8CVSS0.00266EPSS

Exploits0References1

Vulnrichment•added 2025/06/02 1:53 p.m.•4 views

CVE-2025-37092

A command injection remote code execution vulnerability exists in HPE StoreOnce Software...

7.5CVSS8AI score0.01163EPSS

Exploits0References1

CVE•added 2025/06/02 1:53 p.m.•56 views

CVE-2025-37092

CVE-2025-37092 is a command-injection remote code-execution vulnerability in HPE StoreOnce Software. The CVE entry notes high-severity impact with potential for full system compromise; initial details indicate network-accessible exploitation with no user interaction. Multiple sources (NVD/NCSC/Re...

9.8CVSS8.3AI score0.01163EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by