Lucene search
K
HpeMost viewed

1147 matches found

HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/26 12:0 a.m.•3 views

HPESBHF04102 rev.2 - HPE Superdome Flex and Superdome Flex 280 BMC web interface vulnerability, Remote Denial of Service

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Superdome Flex Server - Prior to version 3.30.142 HPE Superdome Flex 280 Server - Prior to version 1.10.272 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --...

6.5CVSS6.6AI score0.00842EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/24 12:0 a.m.•3 views

HPESBHF04087 rev.1 - HPE Integrated Lights-Out 5 (iLO 5) for the Moonshot and Edgeline HPE ProLiant m750 Server Blade, Remote Disclosure of Information

Potential Security Impact: Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m750 Server Blade - Prior to iLO 5 v2.32 for Moonshot/Edgeline CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7202 |...

5.3CVSS6.2AI score0.01472EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/24 12:0 a.m.•3 views

HPESBHF04105 rev.1 - HPE Synergy Compute Modules with Integrated Lights-Out 5 (iLO 5) or Integrated Lights-Out 4 (iLO 4), Remote Disclosure of Information

Potential Security Impact: Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v2.33 - Please see the RESOLUTION note HPE Integrated Lights-Out 4 iLO 4 - Prior to v2.77 - Please see th...

5.3CVSS6.2AI score0.01472EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/23 12:0 a.m.•3 views

HPESBGN04107 rev.2 - HPE iLO Amplifier Pack, Remote Cross-Site Scripting (XSS) Vulnerability

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Prior to version 1.95 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-26580 | CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:...

6.1CVSS6.4AI score0.00621EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/23 12:0 a.m.•3 views

HPESBGN04108 rev.1 - HPE iLO Amplifier Pack, Remote Cross-Site Scripting (XSS) Vulnerability

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Prior to version 1.80 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2016-7103 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

6.1CVSS6.7AI score0.2258EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/23 12:0 a.m.•3 views

HPESBGN04109 rev.1 - HPE iLO Amplifier Pack, Multiple Remote Cross-Site Scripting (XSS) Vulnerabilities

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Prior to version 1.80 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-11022 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:...

6.9CVSS6.7AI score0.99019EPSS
Exploits11
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/19 12:0 a.m.•3 views

HPESBMU04112 rev.1 - HPE Unified Data Management (UDM), Local Disclosure of Privileged Information

Potential Security Impact: Local: Disclosure of Privileged Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified Data Management UDM Versions 1.2009.0 and 1.2101.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-26579 |...

7.1CVSS6.2AI score0.00211EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/15 12:0 a.m.•3 views

HPESBST04094 rev.1 - HPE SimpliVity OmniStack and OmniCube, Remote Code Execution

Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 2600 Gen10 - depends on ESXi version see interop guide HPE SimpliVity 380 Gen10 - depends on ESXi version see interop guide HPE SimpliVity 380 Gen10 G - depends on ESXi...

10CVSS7.1AI score0.83015EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/25 12:0 a.m.•3 views

HPESBNW04092 rev.2 - Aruba Mobility Controllers, Aruba Access Points when managed by Mobility Controllers, Aruba SD-WAN Gateways, and Aruba Instant Access Points, Multiple Remote Vulnerabilities in dnsmasq

Potential Security Impact: Remote: Compromise of System Integrity, Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 2XX Series Campus Access Points All versions Aruba 3XX Series Campus Access Points All versions Aruba 7000 Series Mobility Controllers...

4.3CVSS7AI score0.04873EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/24 12:0 a.m.•3 views

HPESBNW04090 rev.3 - Aruba AirWave Management Platform, Multiple Vulnerabilities

Potential Security Impact: Remote: Cross-Site Request Forgery CSRF, Cross-Site Scripting XSS, SQL Injection, Unauthorized Access, Authentication Restriction Bypass, XML External Entity XXE SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba AirWave Management Platform - Prior to...

9CVSS6.1AI score0.03119EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/19 12:0 a.m.•3 views

HPESBNW04089 rev.2 - Aruba ClearPass Policy Manager, Multiple Vulnerabilities

Potential Security Impact: Remote: Authentication Bypass, Escalation of Privilege, Execution of Arbitrary Commands, Unauthenticated Arbitrary Code Execution, Unauthorized Access, Server-Side Request Forgery SSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Polic...

9CVSS6.1AI score0.02452EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/03 12:0 a.m.•3 views

HPESBHF04080 rev.1 - HPE Apollo 70 System's Baseboard Management Controller (BMC) firmware have multiple local vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Directory Traversal, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 70 System -Prior to Version 3.0.14.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-25142 |...

7.8CVSS6.9AI score0.00839EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/02 12:0 a.m.•3 views

HPESBNW04083 rev.2 - HPE and Aruba L2/L3 Switches, Remote Memory Corruption

Potential Security Impact: Remote: memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 5400R zl2 Switch Series - Prior to KB.16.10.0012, KB.16.09.0015, KB.16.08.0019 Aruba 3810M Switch Series - Prior to KB.16.10.0012, KB.16.09.0015, KB.16.08.0019 Aruba 2930M...

7.5CVSS7AI score0.01464EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/02 12:0 a.m.•3 views

HPESBNW04082 rev.1 - HPE and Aruba L2/L3 Switches, Local Denial of Service (DoS)

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 5400R zl2 Switch Series - Prior to KB.16.10.0012 Aruba 3810M Switch Series - Prior to KB.16.10.0012 Aruba 2930M Switch Series - Prior to WC.16.10.0012 Aruba 2930F Switch...

4.9CVSS6.1AI score0.00296EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/02 12:0 a.m.•3 views

HPESBHF04084 rev.1 - HPE Moonshot Provisioning Manager, Remote Buffer Overflow in khuploadfile.cgi

Potential Security Impact: Remote: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Moonshot Provisioning Manager v1.20 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-25139 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L | 7.3 |...

10CVSS7AI score0.07876EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/01/26 12:0 a.m.•3 views

HPESBNS04076 rev.1 - HPE Web ViewPoint Suite, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Disclosure of Sensitive Information, Unauthorized Access to Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Web ViewPoint Enterprise T0986 - L, J and H series Web ViewPoint Plus T0952 - L, J and H series Web ViewPoint T0320 ...

5.9CVSS6.4AI score0.01424EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/01/22 12:0 a.m.•3 views

HPESBHF04079 rev.2 - HPE Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4) for Moonshot and Edgeline Cartridges and Blades, Remote Memory Corruption

Potential Security Impact: Remote: memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m750 Server Blade - Prior to iLO 5 v2.32 for Moonshot/Edgeline HPE ProLiant m710x Server Blade - Prior to iLO 4 v2.61 for Moonshot/Edgeline HPE ProLiant m710x-L Server...

7.5CVSS7AI score0.01464EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/01/21 12:0 a.m.•3 views

HPESBHF04073 rev.1 - HPE Cloudline BMC firmware, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Directory Traversal, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cloudline CL5800 Gen10 Server Version 1.08.0.0 HPE Cloudline CL3100 Gen10 Server Version 1.10.0.0 - Version 1.08.0.0 for Cascade Lake H...

7.8CVSS7AI score0.00397EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/01/14 12:0 a.m.•3 views

HPESBNW04078 rev.2 - Aruba AirWave Glass, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Authentication Bypass, Escalation of Privilege, Execution of Arbitrary Commands, Unauthenticated Arbitrary Code Execution, Unauthorized Access, Server-Side Request Forgery SSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Airwave Softwar...

10CVSS6.2AI score0.07241EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/01/13 12:0 a.m.•3 views

HPESBHF04074 rev.1 - HP/HPE R7000 and R5000 Uninterruptable Power System Network Module Firmware (AF465A), Ripple20 Multiple Vulnerabilities

Potential Security Impact: Remote: Code Execution, Denial of Service DoS, Disclosure of Sensitive Information, Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE UPS Network Module - Prior to 1.12.002 - The HPE UPS Network Module is an option for HP/HPE...

10CVSS6.7AI score0.36965EPSS
Exploits21
HPE Security Bulletins
HPE Security Bulletins
•added 2020/12/17 12:0 a.m.•3 views

HPESBGN04067 rev.2 - HPE iLO Amplifier Pack server version 1.70, Local Code Execution and Local Elevation Privilege

Potential Security Impact: Local: Code Execution, Elevation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Ver 1.70 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7203 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H...

9.8CVSS7AI score0.04985EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/12/16 12:0 a.m.•3 views

HPESBST04075 rev.1 - HPE StoreEver MSL2024 Tape Library and HPE StoreEver 1/8 G2 Tape Autoloader, Remote Cross-site Request Forgery (CSRF)

Potential Security Impact: Remote: Cross-Site Request Forgery CSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEver MSL Tape Libraries All versions prior to 7.30 HPE StoreEver 1/8 G2 Tape Autoloaders All versions prior to 5.40 CVSS Scores: | CVE | CVSS Vector | Base...

8.8CVSS7AI score0.00571EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/12/15 12:0 a.m.•3 views

HPESBGN04068 rev.3 - Hewlett Packard Enterprise Systems Insight Manager (SIM), AMF Deserialization of Untrusted Data, Remote Code Execution Vulnerability

Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Systems Insight Manager SIM 7.6.x CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7200 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | 9.8 |...

9.8CVSS7.1AI score0.8189EPSS
Exploits4
HPE Security Bulletins
HPE Security Bulletins
•added 2020/12/01 12:0 a.m.•3 views

HPESBUX04050 rev.1 - HP-UX Web Server Suite running Apache on HP-UX 11iv3, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Access Restriction Bypass, Code Execution, Cross-Site Scripting XSS, Denial of Service DoS, Disclosure of Sensitive Information, URL Redirection, memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX Web Server Suite Software -...

9.8CVSS6.7AI score0.90039EPSS
Exploits10
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/30 12:0 a.m.•3 views

HPESBGN04063 rev.1 - HPE Edgeline Infrastructure Manager, Remote Authentication Bypass

Potential Security Impact: Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Edgeline Infrastructure Management Software - Prior to 1.21 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7199 |...

10CVSS7AI score0.09187EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/30 12:0 a.m.•3 views

HPESBUX04065 rev.1 - HPE HP-UX Perl, Multiple Local and Remote Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX Perl Software E.5.28.0.A CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-18311 |...

9.8CVSS6.7AI score0.12093EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/18 12:0 a.m.•3 views

HPESBST04053 rev.1 - HPE StoreEasy Storage for Windows, Multiple vulnerabilities including Remote Code Execution, Elevation of Privilege and NTLM Tampering.

Potential Security Impact: Remote: Code Execution, Elevated Privileges SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEasy 1000 Storage All HPE StoreEasy 1000 Storage Gen10 All HPE StoreEasy 1000 Storage Gen9 All HPE StoreEasy 1450 Storage All HPE StoreEasy 1460 Storage...

10CVSS6.8AI score0.99999EPSS
Exploits248
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/12 12:0 a.m.•3 views

HPESBHF04061 rev.1 - HPE Ethernet Adapters with Intel 700 Series Based Controllers, Local Escalation of Privileges and/or Denial of Service

Potential Security Impact: Local: Denial of Service DoS, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy 4610C 10/25Gb Ethernet Adapter - Prior to v8.1 HPE Ethernet 10Gb 2-port FLR-SFP+ X710-DA2 Adapter - Prior to v7.3 HPE Ethernet 10Gb 2-port...

6.7CVSS6.5AI score0.00371EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/10 12:0 a.m.•3 views

HPESBHF04059 rev.1 - HPE Servers with Intel Processors with the Intel Running Average Power Limit (RAPL) Interface, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m750 Server Blade Prior to system ROM v1.40 HPE ProLiant MicroServer Gen10 Plus Prior to system ROM v2.20 HPE ProLiant DL20 Gen10 Server Prior to system ROM v2....

5.6CVSS6.7AI score0.00446EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/10 12:0 a.m.•3 views

HPESBHF04057 rev.3 - HPE Servers with Certain Intel Processors, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL120 Gen10 Server Prior to System ROM v2.40 HPE ProLiant DL160 Gen10 Server Prior to System ROM v2.40 HPE ProLiant DL180 Gen10 Server Prior to System ROM v2.40...

5.5CVSS6.5AI score0.00438EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/10 12:0 a.m.•3 views

HPESBHF04054 rev.1 - HPE Servers with Intel Processors running Server Platform Services (SPS) firmware

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL120 Gen10 Server Prior to SPS Firmware 04.01.04.423.0 HPE ProLiant DL160 Gen10 Server Prior to SPS Firmware 04.01.04.423.0 HPE ProLiant DL180 Gen10 Server Prior...

6.4CVSS6.4AI score0.00275EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/10 12:0 a.m.•3 views

HPESBHF04058 rev.3 - HPE Servers with Intel Processors, Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4200 Gen10 Server Prior to System ROM v2.40 HPE ProLiant DL120 Gen10 Server Prior to System ROM v2.40 HPE ProLiant DL160 Gen10 Server Prior to System ROM v2.40 HPE...

8.2CVSS6.7AI score0.00414EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/04 12:0 a.m.•3 views

HPESBHF04047 rev.2 - HPE OneView and Synergy Composer, Remote Escalation of Privilege

Potential Security Impact: Remote: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy Composer 5.0, 5.00.01, 5.00.02, 5.2, 5.20.01, 5.3, 5.4 - Earlier versions are also impacted. But, they are not supported. HPE Synergy Composer 2 5.0, 5.00.01,...

9.9CVSS7AI score0.0203EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/10/23 12:0 a.m.•3 views

HPESBST04045 rev.2 - HPE 3Par and Primera StoreServ Management Console (SSMC), Remote Authentication Bypass

Potential Security Impact: Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR StoreServ Management and Core Software Media All versions prior to 3.7.1.1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7197 |...

10CVSS7AI score0.02154EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/10/21 12:0 a.m.•3 views

HPESBGN04049 rev.1 - HPE BlueData EPIC Software Platform and HPE Ezmeral Container Platform, Remote Disclosure of Privileged Information

Potential Security Impact: Remote: Disclosure of Privileged Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. BlueData EPIC Software 4.0 and earlier HPE Ezmeral Container Platform 5.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7196 |...

9.9CVSS6.6AI score0.0085EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/10/06 12:0 a.m.•3 views

HPESBHF04021 rev.3 - HPE Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4) for Moonshot and Edgeline Cartridges and Blades, and Moonshot iLO Chassis Manager, Ripple20 Multiple Vulnerabilities

Potential Security Impact: Remote: Code Execution, Denial of Service DoS, Disclosure of Sensitive Information, Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m750 Server Blade -Prior to iLO 5 v2.30 for Moonshot/Edgeline HPE ProLiant m510 Serv...

10CVSS6.6AI score0.36965EPSS
Exploits11
HPE Security Bulletins
HPE Security Bulletins
•added 2020/10/01 12:0 a.m.•3 views

HPESBST04034 rev.1 - HPE 3PAR Service Processor, Using Exim Mail Transfer Agent (MTA), Remote Command Execution.

Potential Security Impact: Remote: Arbitrary Command Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR Service Processor 5.0.6 and below CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-10149 |...

10CVSS7AI score0.99961EPSS
Exploits27
HPE Security Bulletins
HPE Security Bulletins
•added 2020/09/21 12:0 a.m.•3 views

HPESBNW04041 rev.3 - Aruba Products, TCP SACK PANIC - Kernel Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Airwave Software 8.2.9.1 and below Aruba ClearPass Policy Manager 6.7.12, 6.8.3 and below Aruba CX 6200F Switch Series 10.2 and below Aruba 6300 Switch Series 10.2 and bel...

7.8CVSS7AI score0.98745EPSS
Exploits4
HPE Security Bulletins
HPE Security Bulletins
•added 2020/09/17 12:0 a.m.•3 views

HPESBGN04037 rev.1 - HPE Utility Computing Service (UCS) Meter, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Directory Traversal, Unauthenticated Arbitrary Code Execution, Unauthenticated Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Pay per use PPU 1.9 - HPE UCS Meter CVSS Scores: | CVE | CVSS Vector | Base Score | | ---...

9.8CVSS6.9AI score0.0304EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/09/15 12:0 a.m.•3 views

HPESBHF04039 rev.3 - HPE Synergy Composer 2, Ripple20 Multiple Vulnerabilities

Potential Security Impact: Remote: Code Execution, Denial of Service DoS, Disclosure of Information, Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy Composer 2 - Prior to Composer software release 5.40.00 CVSS Scores: | CVE | CVSS Vector | Base...

10CVSS6.7AI score0.36965EPSS
Exploits11
HPE Security Bulletins
HPE Security Bulletins
•added 2020/09/14 12:0 a.m.•3 views

HPESBGN04024 rev.2 - Hewlett Packard Enterprise Universal API Framework for VMware ESXi (OVA) and Microsoft Hyper-V (VHD), Remote SQL Injection Information Disclosure Vulnerability

Potential Security Impact: Remote: SQL Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Universal API Framework for VMware ESXi OVA - Prior to v2.5.2 HPE Universal API Framework for Microsoft Hyper-V VHD - Prior to v2.5.2 CVSS Scores: | CVE | CVSS Vector | Base Score ...

6.5CVSS6.5AI score0.00946EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/09/03 12:0 a.m.•3 views

HPESBNW04033 rev.3 - Aruba Analytics and Location Engine (ALE), Authenticated Arbitrary File Modification

Potential Security Impact: Remote: Arbitrary File Modification SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Analytics and Location Services Usage Licenses 2.1.0.2 and earlier CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7119 |...

7.2CVSS6.1AI score0.00748EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/08/28 12:0 a.m.•3 views

HPESBUX04015 rev.2 - HP-UX Tomcat-based Servlet Engine, Multiple Remote Vulnerabilities

Potential Security Impact: Local: Access Restriction Bypass; Remote: Access Restriction Bypass, Code Execution, Denial of Service DoS, Gain Unauthorized Access, URL Redirection, Unauthorized Access to Data, Unauthorized Access to Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted...

9.8CVSS6.7AI score0.99652EPSS
Exploits65
HPE Security Bulletins
HPE Security Bulletins
•added 2020/08/24 12:0 a.m.•3 views

HPESBHF04031 rev.3 - HPE Integrated Lights-Out 3 (iLO 3) for Integrity Servers, Ripple20 Multiple Vulnerabilities

Potential Security Impact: Remote: Denial of Service DoS, Disclosure of Sensitive Information, Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP Integrity Superdome 2 Server -Prior to bundle 4.2.66 HPE Integrity rx2800 i2 Server -Prior to bundle 30.00 HPE...

6.4CVSS6.5AI score0.03149EPSS
Exploits3
HPE Security Bulletins
HPE Security Bulletins
•added 2020/08/18 12:0 a.m.•3 views

HPESBUX04029 rev.1 - HP-UX Common Internet File System (CIFS), Multiple Vulnerabilities

Potential Security Impact: Local: Unauthorized Access, Unauthorized Access to Files; Remote: Unauthorized Access to Data SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX Common Internet File System CIFS, Client/Server Software B.04.09.00.00 and earlier CVSS Scores: | CVE | CV...

9.1CVSS6.5AI score0.03515EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/08/06 12:0 a.m.•3 views

HPESBUX04025 rev.1 - HP-UX Secure Shell Daemon, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Access Restriction Bypass, Arbitrary Command Execution, Arbitrary File Modification, Authentication Bypass, Authorized User SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX 11i Secure Shell Software A.07.40.003 and earlier are impacted CVSS...

6.8CVSS6.7AI score0.98631EPSS
Exploits33
HPE Security Bulletins
HPE Security Bulletins
•added 2020/07/29 12:0 a.m.•3 views

HPESBHF04020 rev.2 - HPE insmod and GRUB2 vulnerability, Local Arbitrary Code Execution

Potential Security Impact: Local: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Intelligent Provisioning Gen10 and Gen10 Plus Servers - v3.30.226, v3.46, Gen9 - Prior to 2.82, Gen8 - Prior to 1.72 HPE Service Pack for ProLiant Prior to Version 2020.03.2...

8.2CVSS6.7AI score0.01434EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/07/22 12:0 a.m.•3 views

HPESBNW04016 rev.2 - HPE Aruba Clearpass Manager, Multiple Remote Vulnerabilities

Potential Security Impact: Local: Cross-Site Scripting XSS; Remote: Authentication Bypass, Code Execution, Unauthorized Information Disclosure SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Policy Manager 6.8.x prior to 6.8.4 and 6.7.x prior to 6.7.13 CVSS Scores:...

9.8CVSS6.1AI score0.01886EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/07/22 12:0 a.m.•3 views

HPESBNW04014 rev.2 - HPE Aruba Networking Local Unauthorized Disclosure of Information (Aka "Kr00k" Vulnerability)

Potential Security Impact: Local: Unauthorized Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Instant IAP-204 IL 802.11n/ac Dual 2x2:2 Radio Antenna Connectors AP All versions. Aruba Instant IAP-204 JP 802.11n/ac Dual 2x2:2 Radio Antenna Connectors...

3.1CVSS7AI score0.07709EPSS
Exploits7
HPE Security Bulletins
HPE Security Bulletins
•added 2020/07/22 12:0 a.m.•3 views

HPESBNW04017 rev.2 - HPE Aruba AirWave, Remote Code Execution

Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Airwave Software 8.x prior to 8.2.10.1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-5323 | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H | 7.2 |...

7.2CVSS6.1AI score0.02563EPSS
Exploits0
Total number of security vulnerabilities1147