7 matches found
CVE-2017-8948
CVE-2017-8948 describes a remote bypass of security restrictions in HP/NNMi (HPE Network Node Manager i) software. Affected are NNMi versions v10.0x, v10.1x, and v10.2x. The CVSS metrics indicate high severity (CVSSv3: 9.8) with unauthenticated network access and no user interaction required; imp...
CVE-2016-2013
HPE Network Node Manager i NNMi 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to obtain sensitive information via unspecified vectors...
CVE-2016-2011
Cross-site scripting XSS vulnerability in HPE Network Node Manager i NNMi 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-2010...
CVE-2016-2009
HPE Network Node Manager i NNMi 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections ACC library...
Cross site scripting
Cross-site scripting XSS vulnerability in HPE Network Node Manager i NNMi 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-2010...
CVE-2016-2013
HPE Network Node Manager i NNMi 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to obtain sensitive information via unspecified vectors...
CVE-2016-2011
Cross-site scripting XSS vulnerability in HPE Network Node Manager i NNMi 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-2010...