Lucene search
K
HpeMost viewed

1147 matches found

HPE Security Bulletins
HPE Security Bulletins
added 2022/09/15 12:0 a.m.3 views

HPESBHF04366 rev.3 - HPE Integrated Lights-Out 5 (iLO 5), or Integrated Lights-out 4 (iLO 4) Using OpenSSL, Remote Denial of Service

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v2.72 HPE Integrated Lights-Out 4 iLO 4 - Prior to v2.81 HP ConvergedSystem 700 - Varies, based on server...

7.5CVSS6.6AI score0.70561EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
added 2022/08/30 12:0 a.m.3 views

HPESBNW04363 rev.2 - Aruba AOS-CX Switches, Multiple Vulnerabilities

Potential Security Impact: Local: Access Restriction Bypass, Authentication Bypass; Remote: Arbitrary Code Execution, Disclosure of Information, Server-Side Request Forgery SSRF, memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. ArubaOS-CX Switches AOS-CX 10.10.xxx...

8.8CVSS6.1AI score0.0162EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/08/09 12:0 a.m.3 views

HPESBHF04356 rev. 1 - Certain HPE ProLiant DX Servers Using Certain Intel Processor BIOS, INTEL-SA-00686, 2022.2 IPU – Intel BIOS Advisory, Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DX360 Gen10 Plus server - Prior to 1.6207-14-2022 - Use BIOS family U46 HPE ProLiant DX380 Gen10 Plus server - Prior to 1.6207-14-2022 - Use BIOS family U46 CVSS...

7.8CVSS6.1AI score0.00251EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/06/29 12:0 a.m.3 views

HPESBST04324 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processors, INTEL-SA-00615, 2022.1 IPU – Intel Processors MMIO Stale Data Advisory, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 170r Gen10 Server - Prior to 2.6605172022 - Use BIOS family U38 HPE SimpliVity 190r Gen10 Server - Prior to 2.6605172022 - Use BIOS family U38 HPE SimpliVity...

6.1CVSS6.7AI score0.06451EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/06/29 12:0 a.m.3 views

HPESBMU04330 rev.1 - HPE IceWall Products Using SSO Certd, Multiple Vulnerabilities

Potential Security Impact: Remote: SQL Injection, Unauthorized Data Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. IceWall SSO certd 10.0 RHEL and HP-UX CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2022-28623 |...

9.8CVSS6.1AI score0.00835EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/06/29 12:0 a.m.3 views

HPESBST04298 rev.1 - Certain HPE SimpliVity Servers using Certain Intel Processor BIOS, INTEL-SA-00601, 2022.1 IPU – Intel BIOS Advisory, Multiple Local Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 170r Gen10 Server - Prior to 2.6605172022 - Use BIOS family U38 HPE SimpliVity 190r Gen10 Server - Prior to 2.6605172022 - Use BIOS...

8.2CVSS6.1AI score0.00268EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/06/28 12:0 a.m.3 views

HPESBST04329 rev.1 - HPE B-Series SANnav Management Portal, Multiple Vulnerabilities

Potential Security Impact: Local: Disclosure of Sensitive Information; Remote: Denial of Service DoS, Disclosure of Information, Unauthorized Access to Data, Unauthorized Data Modification SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SANnav Management Software - 2.2.x.x pri...

7.7CVSS6.7AI score0.53461EPSS
Exploits10
HPE Security Bulletins
HPE Security Bulletins
added 2022/06/07 12:0 a.m.3 views

HPESBHF04314 rev.4 - HPE Superdome Flex, Superdome Flex 280, Integrity MC990 X, SGI UV 300 Servers and SGI UV 3000 Servers Using Certain Intel Processor BIOS, INTEL-SA-00601, 2022.1 IPU – Intel BIOS Advisory, Multiple Local Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrity MC990 X Server - Prior to 5.2.16 BIOS in product bundle 2022.06 - Impacted by CVE-2021-0154, CVE-2021-0155, CVE-2021-0189 HPE Superdom...

8.2CVSS6.1AI score0.00268EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/05/16 12:0 a.m.3 views

HPESBHF04235 rev.1 - HPE ProLiant Gen10 and Gen10 Plus Servers Using Certain AMD EPYC Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Compromise of System Integrity, Denial of Service DoS, Disclosure of Information, memory corruption, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL385 Gen10 Server - Prior to v2.56 HPE ProLiant DL325 Gen10 Server -...

7.2CVSS7AI score0.00265EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/05/10 12:0 a.m.3 views

HPESBHF04286 rev.4 - Certain HPE ProLiant BL/DL/ML/XL/MicroServer and Apollo Servers Using Certain Intel Processor BIOS, INTEL-SA-00601, 2022.1 IPU – Intel BIOS Advisory, Multiple Local Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4200 Gen10 Server - Prior to 2.6605172022 - Addresses an incomplete fix for CVE-2021-0159, CVE-2021-33123, and CVE-2021-33124 HPE ProLian...

8.2CVSS6.1AI score0.00268EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/05/05 12:0 a.m.3 views

HPESBST04282 rev.1 - HPE B-Series SANnav Management Portal, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Code Execution, Disclosure of Sensitive Information, SQL Injection, Unauthorized Access to Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SANnav Management Software 2.1.1x, 2.1.0x, 2.0.0 CVSS Scores: | CVE | CVSS Vector...

9.8CVSS6.8AI score0.56636EPSS
Exploits23
HPE Security Bulletins
HPE Security Bulletins
added 2022/05/04 12:0 a.m.3 views

HPESBNW04279 rev.3 - HPE Aruba ClearPass Policy Manager, Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary Command Execution, Authentication Bypass, Cross-Site Scripting XSS, Disclosure of Sensitive Information, Server-Side Request Forgery SSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Policy Manager 6.10.4 and below,...

10CVSS7AI score0.03273EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/05/03 12:0 a.m.3 views

HPESBNW04291 rev.4 - Aruba Switches, Remote Arbitrary Code Execution

Potential Security Impact: Remote: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 2930F Switch Series - See VULNERABILITY SUMMARY section Aruba 2920 Switch Series - See VULNERABILITY SUMMARY section Aruba 2530 Switch Series - See VULNERABILITY SUMMA...

9.8CVSS6.1AI score0.21877EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/04/06 12:0 a.m.3 views

HPESBST04268 rev.1 - HPE Nimble Storage, Remote Code Execution

Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Nimble Storage Hybrid Flash Arrays - 5.3.1.0 and earlier, 5.2.1.400 and earlier and 5.0.10.0 and earlier Nimble Storage All Flash Arrays - 5.3.1.0 and earlier, 5.2.1.400 and earli...

7.5CVSS6.1AI score0.00767EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/03/29 12:0 a.m.3 views

HPESBGN04252 rev.1 - HPE OneView, Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Unauthorized Read Access to Files, Authentication Restriction Bypass; Remote: Cross-Site Scripting XSS, Unauthenticated Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView - Prior to 6.6 CVSS Scores: | CVE | CVSS...

7.8CVSS6.1AI score0.01353EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/02/24 12:0 a.m.3 views

HPESBNW04259 rev.2 - HPE Aruba 4100i, 6100, 6200, 6300, 6400, 8320, 8325, 8360, and 8400 Model Switches, Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Unauthenticated Arbitrary Code Execution; Remote: Arbitrary Command Execution, Denial of Service DoS, Directory Traversal, Unauthorized Disclosure of Information, script injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are...

9CVSS6.6AI score0.50445EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
added 2022/02/22 12:0 a.m.3 views

HPESBGN04228 rev.1 - HPE OneView Global Dashboard, Remote Cross-Site Scripting (XSS) and URL Redirection Vulnerabilities

Potential Security Impact: Remote: Cross-Site Scripting XSS, URL Redirection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView Global Dashboard - Prior to 2.5 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-29216 |...

6.1CVSS6.1AI score0.00715EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/02/16 12:0 a.m.3 views

HPESBGN04246 rev.1 - Hewlett Packard Enterprise iLO Amplifier Pack, Remote Buffer Overflow

Potential Security Impact: Remote: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Prior to 2.12 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-29220 | CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H | 6.6 |...

9CVSS6.9AI score0.02031EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/02/16 12:0 a.m.3 views

HPESBHF04249 rev.1 - HPE Integrated Lights-Out 4 (iLO 4), Remote Host Header Injection Vulnerability

Potential Security Impact: Remote: Host Header Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 4 iLO 4 - Prior to 2.60 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2022-23701 |...

5.3CVSS6.2AI score0.00675EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/02/15 12:0 a.m.3 views

HPESBHF04251 rev.2 - HPE Gen10 and Gen10 Plus Synergy Servers Using Integrated Lights-Out 5 (iLO 5), Remote Buffer Overflow

Potential Security Impact: Remote: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy 480 Gen10 Compute Module - Prior to iLO 5 v2.60a HPE Synergy 660 Gen10 Compute Module - Prior to iLO 5 v2.60a HPE Synergy 480 Gen10 Plus Compute Module - Prior to iLO 5...

7.4CVSS6.6AI score0.50445EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/02/11 12:0 a.m.3 views

HPESBNS04250 rev.1 - HPE Samba on NonStop, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Access Restriction Bypass, Elevation of Privilege, Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Samba on NonStop T1201L02, T1201L02^AAR, T1201L02^AAS; T120L01 - T1201L01^AAO; T1201J01, T1201J01^AAT; T1201H01 -...

9.9CVSS6.8AI score0.7372EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
added 2022/02/08 12:0 a.m.3 views

HPESBHF04243 rev.3 - Certain HPE Servers using certain Intel Processor BIOS, INTEL-SA-00527, 2021.2 IPU – Intel BIOS Advisory, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4510 Gen10 System - Prior to 2.6001132022 HPE ProLiant BL460c Gen10 Server Blade - Prior to 2.6001132022 HPE...

8.2CVSS6.6AI score0.00334EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/02/08 12:0 a.m.3 views

HPESBHF04244 rev.4 - Certain HPE Servers using certain Intel Processor BIOS, Intel Processor Breakpoint Control Flow Advisory, Intel-SA-00532, Local Denial of Service

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant BL460c Gen10 Server Blade - Prior to 2.6001132022 HPE ProLiant DL20 Gen10 Server - Prior to 2.5601202022 HPE ProLiant DL160 Gen10 Server - Prior to 2.6001132022 HPE...

5.5CVSS6.5AI score0.00299EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/02/02 12:0 a.m.3 views

HPESBNW04239 rev.3 - HPE Aruba 9000 Series Gateways, Multiple UEFI Vulnerabilities

Potential Security Impact: Local: Access Restriction Bypass, Arbitrary Code Execution, Compromise of System Integrity, Elevated Privileges, Gain Extended Privileges, Increase in Privilege, memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 9000 Gateway - See...

8.2CVSS6.1AI score0.00351EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/02/01 12:0 a.m.3 views

HPESBNW04237 rev.4 - HPE Aruba Analytics and Location Engine, Aruba Central On Prem (COP), and Aruba ClearPass Policy Manager, PwnKit (Polkit) Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Analytics and Location Engine 2.2.0.1 and below Aruba ClearPass Policy Manager 6.10.3 and all previous versions Aruba Central On-Premises 2.5.x.x: 2.5.4.2 and below CVSS...

7.8CVSS7AI score0.94921EPSS
Exploits152
HPE Security Bulletins
HPE Security Bulletins
added 2022/01/28 12:0 a.m.3 views

HPESBNW04234 rev.1 - HPE FlexNetwork 5130 EL Switch Series, Local Buffer Overflow

Potential Security Impact: Local: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE FlexNetwork 5130 EI Switch Series - Prior to 5130EI7.10.R3507P02 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-29219 |...

7.8CVSS7AI score0.0023EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/01/27 12:0 a.m.3 views

HPESBGN04233 rev.1 - HPE Agentless Management Service for Windows, Unquoted Search Path

Potential Security Impact: Local: Unquoted Search Path SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Agentless Management - Prior to 1.44.0.0, 10.96.0.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-29218 |...

8.2CVSS6.8AI score0.00237EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/01/14 12:0 a.m.3 views

HPESBGN04232 rev.1 - HPE Network Functions, Apache Log4j 2 Remote Arbitrary Code Execution

Potential Security Impact: Remote: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified Data Management UDM 1.2009.0, 1.2101.0, 1.2103.0, 1.2105.0, 1.2107.0, 1.2109.0, 1.2109.1 HPE Authentication Server Function AUSF 1.2009.0, 1.2101.0, 1.2103.0,...

10CVSS6.8AI score0.99999EPSS
Exploits354
HPE Security Bulletins
HPE Security Bulletins
added 2022/01/11 12:0 a.m.3 views

HPESBEZ04196 rev.2 - HPE Ezmeral Data Fabric, Remote Access Restriction Bypass

Potential Security Impact: Remote: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Ezmeral Data Fabric - Prior to Tez-0.8: mapr-tez-0.8.201907081100-1.noarch Tez-0.9: mapr-tez-0.9.201907090334-1.noarch Tez-0.9.2: mapr-tez-0.9.2.0.201907081043-1.noarch...

9.8CVSS7AI score0.0116EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2022/01/10 12:0 a.m.3 views

HPESBUX04206 rev.2 - HP-UX Telnetd, Remote Execution of Arbitrary Code

Potential Security Impact: Remote: Arbitrary Code Execution, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX 11.31 PHNE42509 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-10188 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |...

10CVSS6.8AI score0.74513EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
added 2022/01/06 12:0 a.m.3 views

HPESBGN04214 rev.1 - HPE Edgeline Integrated System Manager (iSM) for Edgeline EL300 Using DNSmasq and Nginx, Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary Code Execution, Unauthorized Data Access, memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Edgeline EL300 Converged Edge System - Prior to v1.50 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

9.8CVSS6.8AI score0.93307EPSS
Exploits42
HPE Security Bulletins
HPE Security Bulletins
added 2021/12/22 12:0 a.m.3 views

HPESBGN04226 rev.2 - HPE enhanced Interactive Unified Mediation (eIUM), Apache Log4j 2 Remote Arbitrary Code Execution and Remote Code Execution

Potential Security Impact: Remote: Arbitrary Code Execution, Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Enhanced Interactive Unified Mediation eIUM 9.x, 10.6.3 - 9.x version is vulnerable only if Infinispan cache or CIS module is used CVSS Scores: | CVE |...

10CVSS6.8AI score0.99999EPSS
Exploits356
HPE Security Bulletins
HPE Security Bulletins
added 2021/12/21 12:0 a.m.3 views

HPESBGN04225 rev.1 - HPE Trueview Inventory Software Series, Apache Log4j 2 Remote Arbitrary Code Execution, Remote Code Execution, and Remote Denial of Service

Potential Security Impact: Remote: Arbitrary Code Execution, Code Execution, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Trueview Inventory Software Series - Prior to 8.6.22.1 and 8.7.3 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | ---...

10CVSS6.8AI score0.99999EPSS
Exploits358
HPE Security Bulletins
HPE Security Bulletins
added 2021/12/20 12:0 a.m.3 views

HPESBGN04223 rev.1 - HPE Remote SIM Provisioning Manager (RSPM), Apache Log4j 2 Remote Arbitrary Code Execution and Remote Code Execution

Potential Security Impact: Remote: Arbitrary Code Execution, Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Remote SIM Provisioning Manager RSPM - RSPM1.3.2, RSPM1.4.1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-44228 |...

10CVSS6.8AI score0.99999EPSS
Exploits356
HPE Security Bulletins
HPE Security Bulletins
added 2021/12/20 12:0 a.m.3 views

HPESBGN04219 rev.2 - HPE 3PAR Service Processors, Apache Log4j 2 Remote Arbitrary Code Execution and Remote Code Execution

Potential Security Impact: Remote: Arbitrary Code Execution, Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR Service Processors - SP 5.x version Prior to 5.0.9.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-44228 |...

10CVSS6.7AI score0.99999EPSS
Exploits358
HPE Security Bulletins
HPE Security Bulletins
added 2021/12/20 12:0 a.m.3 views

HPESBGN04222 rev.1 - HPE Dynamic SIM Provisioning (DSP), Apache Log4j 2 Remote Arbitrary Code Execution and Remote Code Execution

Potential Security Impact: Remote: Arbitrary Code Execution, Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Dynamic SIM Provisioning DSP - DSP3.3, DSP3.1, DSP3.4 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-44228 |...

10CVSS6.8AI score0.99999EPSS
Exploits356
HPE Security Bulletins
HPE Security Bulletins
added 2021/12/17 12:0 a.m.3 views

HPESBGN04218 rev.2 - HPE 3PAR/Primera StoreServ Management Console (SSMC), Apache Log4j 2 Remote Arbitrary Code Execution

Potential Security Impact: Remote: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreServ Management Console SSMC -Prior to v3.8.2.1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-44228 |...

10CVSS6.8AI score0.99999EPSS
Exploits358
HPE Security Bulletins
HPE Security Bulletins
added 2021/12/15 12:0 a.m.3 views

HPESBNW04216 rev.3 - HPE Aruba Silver Peak Orchestrator and Aruba IntroSpect, Apache Log4j Library Remote Arbitrary Code Execution, Remote Code Execution, and Remote Denial of Service

Potential Security Impact: Remote: Arbitrary Code Execution, Code Execution, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Silver Peak Orchestrator - All customer managed Orchestrator and legacy GMS products are affected by these vulnerabilities Aruba...

10CVSS6.8AI score0.99999EPSS
Exploits361
HPE Security Bulletins
HPE Security Bulletins
added 2021/12/13 12:0 a.m.3 views

HPESBHF04211 rev.1 - HPE Gen10 and Gen10 Plus Servers Using Integrated Lights-Out 5 (iLO 5), Remote Buffer Overflow

Potential Security Impact: Remote: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant BL460c Gen10 Server Blade - Prior to v2.60 HPE ProLiant DL580 Gen10 Server - Prior to v2.60 HPE ProLiant DL560 Gen10 Server - Prior to v2.60 HPE ProLiant DL385 Gen10 Plu...

7.4CVSS6.7AI score0.50445EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2021/12/09 12:0 a.m.3 views

HPESBST04207 rev.1 - HPE StoreServ Management Console (SSMC), Authenticated Code Injection Leading to Privilege Elevation

Potential Security Impact: Remote: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreServ Management Console SSMC 3.4 GA to 3.8.1 HPE 3PAR StoreServ Management and Core Software Media 3.4 GA to 3.8.1 CVSS Scores: | CVE | CVSS Vector | Base Score | |...

7.6CVSS7AI score0.01092EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2021/11/17 12:0 a.m.3 views

HPESBST04210 rev.1 - HPE Fibre Channel Host Bus Adapters Emulex HBA Manager, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Arbitrary File Download, Arbitrary File Modification, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 8Gb PCIe Host Bus Adapters - Prior to Emulex HBA Manager 12.8.542.26 - Please see VULNERABILTY SUMMARY section for model...

9.8CVSS7AI score0.02355EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
added 2021/11/10 12:0 a.m.3 views

HPESBHF04209 rev.1 - HPE ProLiant and Apollo Gen10 and Gen10 Plus Servers Using Certain AMD EPYC Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Authentication Bypass, Denial of Service DoS, Disclosure of Information, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL325 Gen10 Server - Prior to version 2.52 HPE ProLiant DL325 Gen10 Plu...

7.9CVSS6.5AI score0.01038EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2021/11/10 12:0 a.m.3 views

HPESBHF04192 rev.2 - HPE ProLiant and ProLiant Server Blades, Apollo, and Synergy Gen10 and Gen10 Plus Servers, Multiple Local Vulnerabilities in UEFI BIOS

Potential Security Impact: Local: Authentication Bypass, Escalation of Privilege, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen10 Server - Prior to v2.50 HPE ProLiant DL160 Gen10 Server - Prior to v2.52 HPE ProLiant DL180 Gen10 Server - Prio...

7.8CVSS6.7AI score0.00399EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
added 2021/11/01 12:0 a.m.3 views

HPESBHF04205 rev.1 - HPE Edgeline EL300 Converged Edge Systems Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Edgeline EL300 Converged Edge System Prior to BIOS: EL011.40 09/25/2021; prior to ME: v11.8.86.3909 CVSS Scores: | CVE | CVSS Vector | Base Scor...

6.4CVSS6.5AI score0.00383EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2021/10/29 12:0 a.m.3 views

HPESBGN04189 rev.1 - Hewlett Packard Enterprise iLO Amplifier Pack, Directory Traversal Remote Code Execution Vulnerability

Potential Security Impact: Remote: Directory Traversal SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Ver 1.80, Ver 1.81, Ver 1.90, and Ver 1.95 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-29212 |...

10CVSS7AI score0.13478EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2021/10/26 12:0 a.m.3 views

HPESBHF04197 rev.1 - HPE ProLiant DL20 Gen10, HPE ProLiant ML30 Gen10, and HPE ProLiant MicroServer Gen10 Plus, Local Bypass of Security Restrictions

Potential Security Impact: Local: Bypass Security Restrictions, Compromise of System Integrity, Denial of Service DoS, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen10 Server - Prior to system ROM v2.52 HPE ProLiant ML30...

8.2CVSS6.7AI score0.00286EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2021/10/12 12:0 a.m.3 views

HPESBNW04203 rev.2 - HPE Aruba ClearPass Policy Manager, Multiple Vulnerabilities

Potential Security Impact: Local: Escalation of Privilege; Remote: Arbitrary Command Execution, Authentication Bypass, Directory Traversal, Disclosure of Sensitive Information, SQL Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Policy Manager - - ClearPa...

9.8CVSS6.1AI score0.03807EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2021/10/07 12:0 a.m.3 views

HPESBUX04198 rev.1 - HPE HP-UX Web Server Suite Software using PHP, Remote Null Pointer Dereference

Potential Security Impact: Remote: Null pointer dereference SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX Web Server Suite Software HP-UX PHP 7.4.7.1.1 and earlier CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-21702 |...

7.5CVSS6.7AI score0.03179EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2021/10/05 12:0 a.m.3 views

HPESBNW04201 rev.2 - HPE Aruba Instant (IAP), Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary Command Execution, Denial of Service DoS, Disclosure of Sensitive Information, Unauthorized Read Access to Files, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 100 Series Access Points - See Details section for...

10CVSS6.1AI score0.02957EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2021/10/05 12:0 a.m.3 views

HPESBST04191 rev.2 - HPE 3PAR StoreServ, HPE Primera Storage and HPE Alletra 9000 Storage Arrays, Remote Unauthenticated Code Execution

Potential Security Impact: Remote: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP 3PAR StoreServ 10000 Storage 3.3.1 MU1 up to 3.3.1 MU2 P157 or 3.3.1 up to 3.3.1 MU5 P156 or 3.3.1 MU1 up to 3.3.2 GA P01 - the vulnerability was introduced in 3.3.1 MU1...

10CVSS7AI score0.01755EPSS
Exploits0
Total number of security vulnerabilities1147