Lucene search
K
HpeMost viewed

1147 matches found

HPE Security Bulletins
HPE Security Bulletins
•added 2020/07/22 12:0 a.m.•3 views

HPESBNW04013 rev.2 - HPE Aruba ClearPass Policy Manager, Remote Code Execution

Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Policy Manager Versions prior to 6.9.1, 6.8.5-HF, 6.7.13-HF CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7115 |...

10CVSS6.1AI score0.64596EPSS
Exploits8
HPE Security Bulletins
HPE Security Bulletins
•added 2020/07/22 12:0 a.m.•3 views

HPESBNW04018 rev.2 - HPE Aruba Clearpass Manager, Information Disclosure in Web Management Interface for Aruba Intelligent Edge Switches

Potential Security Impact: Remote: Unauthorized Information Disclosure SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 2540 Switch Series 16.08. before 16.08.0009 16.09. before 16.09.0007 16.10. before 16.10.0003 Aruba 2530 Switch Series 16.08. before 16.08.0009 16.09. befor...

7.5CVSS6.1AI score0.01162EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/06/23 12:0 a.m.•3 views

HPESBHF04008 rev.1 - HPE Systems Insight Manager (SIM), Remote Code Execution

Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Systems Insight Manager for HP-UX v7.4, v7.5, v7.6 with Hotfix 63 or lower HPE Systems Insight Manager for Linux v7.4, v7.5, v7.6 with Hotfix 63 or lower HPE Systems Insight Manag...

9.8CVSS7.1AI score0.29323EPSS
Exploits5
HPE Security Bulletins
HPE Security Bulletins
•added 2020/06/17 12:0 a.m.•3 views

HPESBHF04009 rev.1 - Certain HPE Solid State Drives, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 6.4TB NVMe x4 Lanes Mixed Use MO006400KWVVA SSD - Prior to HPK1 HPE 3.2TB NVMe x4 Lanes Mixed Use MO003200KWVUV SSD - Prior to HPK1 HPE 1.6TB NVMe x4 Lanes Mixed Use...

7.9CVSS6.3AI score0.00331EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/06/10 12:0 a.m.•3 views

HPESBHF04001 rev.1 - Certain HPE Servers Using Intel Processors, Special Register Buffer Data Sampling Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant MicroServer Gen10 Plus - Prior to v2.1605-25-20208 Jun 2020 HPE ProLiant m710x Server Blade - Prior to v1.84 3/10/2020 HPE ProLiant m750 Server Blade - Prior to...

6.5CVSS6.8AI score0.0054EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/06/10 12:0 a.m.•3 views

HPESBHF03999 rev.2 – Certain HPE Servers Using Intel Processors with Server Platform Services (SPS), Local Escalation of Privilege and Denial of Service

Potential Security Impact: Local: Denial of Service DoS, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant MicroServer Gen10 Plus - Prior to SPS 05.01.04.1138 Jun 2020 - CVE-2020-0545 and CVE-2020-0586 HPE ProLiant DL20 Gen10 Server - Prior to SP...

8.4CVSS6.6AI score0.00391EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/06/03 12:0 a.m.•3 views

HPESBHF04005 rev.1 - HPE Edgeline EL300 Converged Edge System Running HPE Integrated System Manager (iSM), Remote Denial of Service

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Edgeline EL300 Converged Edge System - Running HPE Edgeline Integrated System Manager Prior to 2.06 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

7.8CVSS6.7AI score0.98745EPSS
Exploits4
HPE Security Bulletins
HPE Security Bulletins
•added 2020/05/19 12:0 a.m.•3 views

HPESBST03991 rev.1 - HPE Nimble Storage, Remote Access to Sensitive Information

Potential Security Impact: Remote: Unauthorized Access to Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Nimble Storage Hybrid Flash Arrays 3.9.2.0 and older, 4.5.5.0 and older, 5.0.8.0 and older, 5.1.4.0 and older Nimble Storage All Flash Arrays 3.9.2.0...

9.9CVSS7AI score0.00877EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/05/19 12:0 a.m.•3 views

HPESBHF04004 rev.1 - HPE Superdome Flex Server Remote Management Controller (RMC), Local Elevation of Privilege

Potential Security Impact: Local: Elevation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Superdome Flex Server Prior to 3.25.46 12 May 2020 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7137 |...

8.2CVSS6.7AI score0.00306EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/05/05 12:0 a.m.•3 views

HPESBHF03966 rev.1 - HPE Servers with certain Intel Core and Xeon Processors System Memory Management (SMM), Local Disclosure of Privileged Information

Potential Security Impact: Local: Disclosure of Privileged Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m710x Server Blade - Prior to v1.8011-14-2019 HPE ProLiant m710x-L Server Blade - Prior to v1.8011-14-2019 CVSS Scores: | CVE | CVSS Vector | Base...

6CVSS6.6AI score0.00349EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/05/05 12:0 a.m.•3 views

HPESBHF03934 rev.1 - HPE CloudLIne servers using AMI BMC Remote Unauthorized Disclosure of Information, Unauthorized Modification and Denial of Service

Potential Security Impact: Remote: Denial of Service DoS, Disclosure of Information, Unauthorized Modification SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cloudline CL2100 Gen10 Server - Prior to Baseboard Management Controller BMC 1.16.0.030 Apr 2019 - No BIOS update is...

9.8CVSS7.1AI score0.03631EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/04/27 12:0 a.m.•3 views

HPESBHF03970 rev.2 - HPE Products with Intel Ethernet 700 Series Processors, Local Escalation of Privilege, Local Denial of Service

Potential Security Impact: Local: Denial of Service DoS, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Ethernet 10Gb 2-port 562FLR-SFP+ Adapter - Prior to SPP 2019.12.0 - See Resolution for OS-specific HPE Intel Online Firmware Utility versions for...

8.8CVSS6.6AI score0.00557EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/04/24 12:0 a.m.•3 views

HPESBHF03947 rev.1 - HPE UIoT, Remote Unauthorized Access and Access to Sensitive Data

Potential Security Impact: Remote: Unauthorized Access to Sensitive Information, Unauthorized Data Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE IOT + GCP 1.4.0, 1.4.1, 1.4.2, 1.2.4.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7133 ...

9.8CVSS6.8AI score0.01748EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/04/22 12:0 a.m.•3 views

HPESBNS03996 rev.2 - HPE NonStop Blade Maintenance Entity, Integrated Maintenance Entity and Maintenance Entity, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Denial of Service DoS, Disclosure of Information, local memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Integrated Maintenance Entity T1805 - T1805A01 through T1805A01^AAH Maintenance Entity T2805 - T2805A01 through T2805A01^AAU...

9CVSS7AI score0.01143EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/04/22 12:0 a.m.•3 views

HPESBHF03988 rev.1 - HPE Onboard Administrator, Remote Reflected Cross Site Scripting

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Onboard Administrator v4.85 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7132 | CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L | 6.5 |...

6.5CVSS6.2AI score0.00665EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/04/01 12:0 a.m.•3 views

HPESBHF03994 rev.1 - HPE Superdome Flex with iLO4, Remote or Local Code Execution

Potential Security Impact: Local: Code Execution; Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP Superdome X Base Enclosure prior to 8.8.16 HPE Integrity Superdome X Server prior to 8.8.16 HPE Integrity Superdome X with BL920s Blades prior to 8.8.16 HPE...

9CVSS7AI score0.0681EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/04/01 12:0 a.m.•3 views

HPESBHF03995 rev.1 - HPE Superdome X servers with iLO4, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Arbitrary Code Execution, Code Execution, Denial of Service DoS, Disclosure of Sensitive Information, Elevation of Privilege, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP Superdome X Base Enclosure prior to 8.8.26 HPE...

10CVSS7AI score0.12795EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/04/01 12:0 a.m.•3 views

HPESBHF03986 rev.1 - HPE Superdome X servers with iLO4, Remote Code Execution and Authentication Bypass

Potential Security Impact: Remote: Authentication Bypass, Code Execution, Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrity Superdome X Server prior to 8.8.14 HPE Integrity Superdome X with BL920s Blades prior to 8.8.14 HPE Integrity Superdome...

10CVSS6.8AI score0.99335EPSS
Exploits9
HPE Security Bulletins
HPE Security Bulletins
•added 2020/03/26 12:0 a.m.•3 views

HPESBMU03979 rev.1 - HPE MSE Msg Gw application, multiple remote vulnerability

Potential Security Impact: Remote: Access Restriction Bypass, User Validation Failure SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE MSE Msg Gw application E-LTU prior to version 3.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-12000 |...

6.6CVSS6.7AI score0.01147EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/03/04 12:0 a.m.•3 views

HPESBHF03987 rev.1 - HPE OneView Global Dashboard (OVGD), Remote Information Disclosure

Potential Security Impact: Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView Global Dashboard 1.9 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7130 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L | 8.3 |...

8.3CVSS7AI score0.02215EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/02/22 12:0 a.m.•3 views

HPESBHF03985 rev.4 - Certain HPE Servers with Intel Xeon SP-based processors, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4200 Gen10 Server - Prior to ROM v2.30 HPE ProLiant BL460c Gen10 Server Blade - Prior to ROM v2.30 HPE ProLiant DL20 Gen9 Server - Prior to ROM v2.86 - Impacted b...

6.5CVSS6.7AI score0.00587EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/02/22 12:0 a.m.•3 views

HPESBGN03984 rev.1 - HPE OpenCall Media Platform (OCMP), Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary File Download, Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OC Media Platform OCMP OCMP 4.4.8 RP 805,OCMP 4.5.x - All prior versions upto OCMP 4.4.8 and OCMP 4.5.2 CVSS Scores: | CVE | CVSS Vector | Base...

6.9CVSS6.8AI score0.00803EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/01/16 12:0 a.m.•3 views

HPESBNS03976 rev.1 - HPE NonStop using Sudo

Potential Security Impact: Local: Bypass Security Restrictions SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. OSS Core Utilities T1202 T1202L02, T1202L02^AAN, T1202AAO, T1202L02^AAQ, T1202L02^AAR, T1202L01^AAJ, T1202J01, T1202J01^AAP, T1202H01^AAL CVSS Scores: | CVE | CVSS Vector...

9CVSS6.9AI score0.63917EPSS
Exploits10
HPE Security Bulletins
HPE Security Bulletins
•added 2020/01/16 12:0 a.m.•3 views

HPESBNS03981 rev.1 - HPE ViewPoint on NonStop, Local Disclosure of Sensitive Information

Potential Security Impact: Local: Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Web ViewPoint Enterprise T0986 - L Series: T0320L01^ABP through T0320L01^ABZ; J and H Series: T0986H01 through T0986H01^AAE Web ViewPoint Plus T0952 - L Series:...

5.5CVSS6.2AI score0.0043EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/11/13 12:0 a.m.•3 views

HPESBHF03969 rev.5 - HPE ProLiant Gen10 and Superdome Flex Servers using certain Intel Xeon Scalable Processors, Voltage Modulation, Local Denial of Service

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4200 Gen10 Server - Prior to V2.22 Gen10 ROM HPE ProLiant BL460c Gen10 Server Blade - Prior to V2.22 Gen10 ROM HPE ProLiant DL580 Gen10 Server - Prior to V2.22 Gen10...

6CVSS6.7AI score0.00356EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/11/13 12:0 a.m.•3 views

HPESBHF03968 rev.4 - HPE Gen10 ProLiant, Apollo, Superdome Flex, and Synergy Servers using Intel CPU Transactional Synchronization Extensions (TSX) Asynchronous Abort (TAA), Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4200 Gen10 Server - Prior to V2.22 ROM HPE Apollo 2000 System - Prior to V2.22 ROM HPE ProLiant BL460c Gen10 Server Blade - Prior to V2.22 ROM HPE ProLiant DL580...

6.5CVSS6.8AI score0.03133EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/11/13 12:0 a.m.•3 views

HPESBHF03963 rev.1 - Certain HPE ProLiant Servers with Intel CSME, AMT, SPS, TXE,

Potential Security Impact: Remote: Denial of Service DoS, Disclosure of Privileged Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4200 Gen10 Server - Prior to SPS FW 4.01.04.339 HPE ProLiant BL460c Gen10 Server Blade - Prior to SPS FW 4.01.04.339 HPE ProLia...

6.8CVSS6.6AI score0.02342EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/11/05 12:0 a.m.•3 views

HPESBST03964 rev.1 - HPE Nimble Storage, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Disclosure of Information, Elevation of Privilege, Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Nimble Storage Hybrid Flash Arrays - 5.1.2.0 and older, 5.0.7.0 and older, 4.5.4.0 and older, 3.9.1.0 and older Nimble...

10CVSS7AI score0.01464EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/10/31 12:0 a.m.•3 views

HPESBUX03962 rev.2 - HP-UX NTP service, multiple vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Buffer Overflow; Remote: Compromise of System Integrity, Denial of Service DoS, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX NTP Software Prior to C.4.2.8.4.0 CVSS Scores: | CVE | CVSS Vector | Base...

9.8CVSS6.6AI score0.2932EPSS
Exploits15
HPE Security Bulletins
HPE Security Bulletins
•added 2019/10/02 12:0 a.m.•3 views

HPESBST03958 rev.1 - HPE Command View Advanced Edition (CVAE) Multiple Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE Earlier than 8.6.4-00 HPE XP7 Command View Advanced Edition Suite Earlier than 8.6.4-00 CVSS Scores: | CVE | CVSS Vector | Base...

6.5CVSS6.7AI score0.05074EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2019/10/02 12:0 a.m.•3 views

HPESBST03959 rev.1 - HPE Command View Advanced Edition (CVAE) Multiple Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE Earlier than 8.6.5-00 HPE XP7 Command View Advanced Edition Suite Earlier than 8.6.5-00 CVSS Scores: | CVE | CVSS Vector | Base...

8.1CVSS6.7AI score0.37618EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
•added 2019/09/30 12:0 a.m.•3 views

HPESBHF03954 rev.1 - HPE UioT, Remote Unauthorized Access and Access to sensitive Data

Potential Security Impact: Remote: Unauthorized Access to Sensitive Information, Unauthorized Remote Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE IOT + GCP 1.2.4.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-11995 |...

9.6CVSS7AI score0.02122EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/09/30 12:0 a.m.•3 views

HPESBHF03955 rev.2 - HPE SimpliVity OmniStack, Local and Remote File Modification and Deletion

Potential Security Impact: Local: Creation and Deletion of Arbitrary Files; Remote: Creation and Deletion of Arbitrary Files SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen9 releases from 3.6.2 to 3.7.9 HPE SimpliVity 380 Gen10 releases from 3.7.1 to 3.7.9 H...

9.4CVSS7AI score0.0153EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/09/27 12:0 a.m.•3 views

HPESBGN03957 rev.1 - HPE Oneview for VMware vCenter, Remote Cross-Site Scripting

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView for VMware vCenter with Operations Manager and Log Insight 9.5 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-11992 |...

6.1CVSS6.4AI score0.01037EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/08/21 12:0 a.m.•3 views

HPESBST03953 rev.1 - HPE Command View Advanced Edition (CVAE), Multiple Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP P9000 Command View Advanced Edition Software 8.4.0-00 to earlier than 8.6.2-00 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- |...

9.8CVSS6.7AI score0.20985EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/08/06 12:0 a.m.•3 views

HPESBST03938 rev.1 - Command View Advanced Edition (CVAE) Products, Local and Remote Access Restriction Bypass

Potential Security Impact: Local: Access Restriction Bypass; Remote: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE earlier than 8.6.2-02 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-5408 |...

7.2CVSS6.6AI score0.01557EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/08/01 12:0 a.m.•3 views

HPESBST03942 rev.1 - 3PAR Service Processor 5.0.5, Multiple remote Vulnerabilities

Potential Security Impact: Remote: Authentication Bypass, Bypass Security Restrictions, Cross-Site Scripting XSS, Gain Unauthorized Access, Session Reuse, Arbitrary file upload SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR Service Processor prior to 5.0.5.1 CVSS Scores:...

10CVSS6.7AI score0.05118EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/07/03 12:0 a.m.•3 views

HPESBHF03943 rev.1 - Certain HPE Servers using AMD EPYC 7001 series Processors, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL385 Gen10 Server All versions prior to v1.44 6/24/2019 HPE ProLiant DL325 Gen10 Server All versions prior to v1.44 6/24/2019 CVSS Scores: | CVE | CVSS Vector ...

5.3CVSS6.4AI score0.01609EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/31 12:0 a.m.•3 views

HPESBMU03922 rev.2 - HPE Smart Update Manager (SUM), Remote Unauthorized Access

Potential Security Impact: Remote: Unauthorized Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Smart Update Manager SUM Prior to 8.3.5 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-11988 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | 9.8 ...

9.8CVSS7AI score0.0142EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/29 12:0 a.m.•3 views

HPESBNS03925 rev.1 - HPE Nonstop Maintenance Entity family of products, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Integrated Maintenance Entity T1805 T1805A01 through T1805A01^AAG Maintenance Entity T2805 T2805A01 through T2805A01^AAT Blade Maintenance Entity FW T4805 T4805A01 through...

5.1CVSS6.2AI score0.00287EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/17 12:0 a.m.•3 views

HPESBHF03917 rev.3 - HPE Integrated Lights-Out 4 (iLO 4), and HPE Integrated Lights-Out 5 (iLO 5), Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Cross-Site Scripting XSS, Unauthorized Data Injection, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers -Prior to 1.40a HPE Integrated Lights-Out 4 iLO 4 -Prior to 2.70...

8.3CVSS6.7AI score0.02094EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/14 12:0 a.m.•3 views

HPESBHF03932 rev.2 - HPE Products using certain Intel UEFI Reference Code, Local Escalation of Privilege, Denial of Service Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL360 Gen10 Server Firmware prior to 2.04 04/18/2019 HPE ProLiant DL160 Gen10 Server Firmware prior to 2.04 04/18/2019 HPE ProLiant DL180...

7.2CVSS6.6AI score0.00434EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/13 12:0 a.m.•3 views

HPESBMU03935 rev.1 - HPE Unified OSS Console Software Products using Apache CouchDB, Remote Code Execution, Remote Escalation of Privilege

Potential Security Impact: Remote: Code Execution, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified OSS Console Software Series All versions prior to HPE Unified Console V2.3.24-MP - All versions of Apache CouchDB prior to version 2.3.x CVSS...

10CVSS6.9AI score0.99838EPSS
Exploits24
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/09 12:0 a.m.•3 views

HPESBHF03930 rev.5 - HPE Intelligent Management Center (IMC) PLAT Remote Arbitrary Code Execution, Disclosure of Information, Denial of Service. and Buffer Overflow

Potential Security Impact: Remote: Arbitrary Code Execution, Denial of Service DoS, Disclosure of Information, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Intelligent Management Center iMC iMC Plat 7.3 E0506P09 and earlier - iMC Plat 7.3 E0705P02 and earlie...

10CVSS6.7AI score0.78644EPSS
Exploits19
HPE Security Bulletins
HPE Security Bulletins
•added 2019/04/30 12:0 a.m.•3 views

HPESBHF03929 rev.1 - HPE Superdome Flex Server, Local Denial of Service, Disclosure of Information, and Escalation of Privilege

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Elevation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Superdome Flex Server Prior to v2.5.314 25 Mar 2019 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

7.2CVSS6.7AI score0.00395EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/04/05 12:0 a.m.•3 views

HPESBHF03916 rev.1 - HPE Virtual Connect SE 16Gb Fibre Channel Module for Synergy, Local or Remote Unauthorized Elevation of Privilege

Potential Security Impact: Local: Unauthorized Elevation of Privilege; Remote: Unauthorized Elevation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Virtual Connect SE 16Gb Fibre Channel Module for Synergy 5.00.50 firmware - Part of HPE Synergy Custom SPP...

9.8CVSS6.9AI score0.02094EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/04/04 12:0 a.m.•3 views

HPESBHF03914 rev.1 - Certain HPE Servers with Intel Server Platform Services (SPS) Firmware, Multiple Local Vulnerabilities

Potential Security Impact: Local: Authentication Bypass, Denial of Service DoS, Execution of Arbitrary Code SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL380 Gen10 Server Prior to Server Platform Services SPS 04.01.04.2512 Apr 2019 HPE ProLiant DL360 Gen10 Server...

7.6CVSS6.7AI score0.00511EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/04/03 12:0 a.m.•3 views

HPESBHF03912 rev.3 - Certain HPE Servers and StoreEasy Appliances with a UEFI-based BIOS, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL380 Gen10 Server Prior to v2.02 3/19/19 HPE ProLiant DL360 Gen10 Server Prior to v2.02 3/19/19 HPE ProLiant...

9.1CVSS6.7AI score0.02271EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/03/19 12:0 a.m.•3 views

HPESBST03915 rev.1 - HPE CVAE products, and Hitachi Infrastructure Analytics Advisor(HIAA) using JDK, Multiple Vulnerabilities

Potential Security Impact: Remote: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE earlier than 8.6.2-00 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-2783 | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N | 7.4 |...

8.3CVSS6.4AI score0.15141EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/03/14 12:0 a.m.•3 views

HPESBST03911 rev.1 - HPE Command View AE (CVAE) Products, multiple vulnerabilities

Potential Security Impact: Remote: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP Command View Advanced Edition 1TB 0-500TB Enterprise LTU - 8.6.2-01 or later HP XP Command View Advanced Edition Software - 8.6.2-01 or later HP XP Command View...

8.3CVSS6.5AI score0.07525EPSS
Exploits0
Total number of security vulnerabilities1147