Lucene search
K
HpeMost viewed

1147 matches found

HPE Security Bulletins
HPE Security Bulletins
•added 2024/07/30 12:0 a.m.•2 views

HPESBNW04675 rev.1 - ClearPass Policy Manager Multiple Vulnerabilities

Potential Security Impact: Local: Authentication Bypass; Remote: Disclosure of Sensitive Information, SQL Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Enterprise Software Please refer to the Vulnerability Summary for Version Information Aruba ClearPass...

9CVSS7AI score0.14859EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
•added 2024/07/23 12:0 a.m.•2 views

HPESBGN04670 rev.1 - HPE Unified OSS Console Assurance Monitoring (UOCAM), Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Buffer Overflow; Remote: Cross-Site Scripting XSS, Denial of Service DoS, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified OSS Console UOC - Prior to v3.1.7 CVSS Scores: | CVE | CVSS Vector | Base...

8.2CVSS7AI score0.03114EPSS
Exploits7
HPE Security Bulletins
HPE Security Bulletins
•added 2024/07/22 12:0 a.m.•2 views

HPESBHF04671 rev.2 - Certain HPE ProLiant DL/ML/SY/XL Edgeline and Alletra Servers, Out-of-Bounds Write Vulnerability

Potential Security Impact: Local: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Alletra 4110 - Prior to v2.2005-27-2024 HPE Alletra 4120 - Prior to v2.2005-27-2024 HPE ProLiant DL20 Gen11 - Prior to v1.4803-14-2024 HPE ProLiant DL110 Gen11 - Prior to...

9.8CVSS6.1AI score0.00995EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/07/15 12:0 a.m.•2 views

HPESBHF04603 rev.1 - HPE ProLiant DL/ML/XL, Synergy, Edgeline and Alletra Servers Using OpenSSL, Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS; Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen11 -Prior to v1.4803-14-2024 HPE ProLiant DL110 Gen11 -Prior to v2.2005-27-2024 HPE ProLiant DL320 Gen11 Server -Prior to...

5.5CVSS6.5AI score0.04459EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/07/12 12:0 a.m.•2 views

HPESBCR04667 rev.1 - HPE Cray Servers Using AMI MegaRac SPX Software (AMI-SA-2023010), Multiple Vulnerabilities

Potential Security Impact: Local: memory corruption, Buffer Overflow, Null pointer dereference SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cray XD665 - prior to BMC 1.14 in HPE Cray SC XD665 Firmware Pack 2024.01.00 HPE Cray XD670 - prior to BMC 1.14 in BMC Firmware for HP...

9.6CVSS6.1AI score0.00308EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/07/12 12:0 a.m.•2 views

HPESBHF04668 rev.1 - HPE Moonshot 1500 Chassis Manager 2.0, Multiple Vulnerabilities

Potential Security Impact: Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Moonshot 1500 2.0 Chassis Manager Module - Prior to v4.0-b43 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-17594 |...

9.8CVSS6.7AI score0.82017EPSS
Exploits46
HPE Security Bulletins
HPE Security Bulletins
•added 2024/07/09 12:0 a.m.•2 views

HPESBNW04662 rev.7 - RADIUS protocol susceptible to forgery attacks

Potential Security Impact: Local: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba AirWave Management Platform See Vulnerability Summary Aruba ClearPass Policy Manager Platform See Vulnerability Summary ArubaOS SD-WAN Gateways See Vulnerability Summary...

9CVSS7.1AI score0.14859EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
•added 2024/06/24 12:0 a.m.•2 views

HPESBGN04659 rev.1 - Arbitrary Code Execution in HPE Athonet Mobile Core

Potential Security Impact: Remote: Arbitrary Code Execution, script injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Athonet Mobile Core See vulnerability summary Affected Products These vulnerabilities affect the following HPE Athonet Mobile Core Software version unless...

7.5CVSS6.1AI score0.00421EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/06/11 12:0 a.m.•2 views

HPESBNW04658 rev.1 - HPE Aruba AirWave Management Platform, Multiple OpenSSH Vulnerabilities

Potential Security Impact: Remote: Arbitrary Command Execution, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba AirWave Management Platform See Vulnerability summary Affected Products HPE Aruba Networking AirWave Management Platform 8.3.0....

6.5CVSS6.7AI score0.93305EPSS
Exploits12
HPE Security Bulletins
HPE Security Bulletins
•added 2024/06/05 12:0 a.m.•2 views

HPESBHF04651 rev.1 - Certain HPE StoreEasy Servers Using Certain Intel Processor BIOS, INTEL-SA-01036, 2024.2 IPU – Intel TDX Module Software Advisory, Multiple Vulnerabilities

Potential Security Impact: Local: Escalation of Privilege, Input Validation SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEasy 1670 Performance Storage - Prior to v2.2005-27-2024 HPE StoreEasy 1670 Storage - Prior to v2.2005-27-2024 HPE StoreEasy 1870 Performance Storag...

8.2CVSS6.1AI score0.00379EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/05/31 12:0 a.m.•2 views

HPESBCR04644 rev.1 - Certain HPE Cray Servers Using Certain Intel Processors, INTEL-SA-00950, 2023.4 IPU Out-of-Band (OOB) - Intel Processor Advisory, Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cray EX420 Compute Blade - Prior to BIOS v.1.3.0 HFP 24.3.1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- |...

8.8CVSS6.1AI score0.01728EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/05/30 12:0 a.m.•2 views

HPESBHF04637 rev.1 - Certain HPE ProLiant DL/ML and MicroServer Using Certain Intel Processors, INTEL-SA-01051, 2024.2 IPU - Intel Processor Advisory, Local Disclosure of Information Vulnerability

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant MicroServer Gen11 - Prior to v1.5005-16-2024 HPE ProLiant DL20 Gen11 - Prior to v1.5005-16-2024 HPE ProLiant ML30 Gen11 - Prior to v1.5005-16-2024 CVSS Scores: ...

2.8CVSS6.1AI score0.00176EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/05/28 12:0 a.m.•2 views

HPESB3P04641 rev.3 - HPE Aruba ArubaOS-CX Switches, Multiple OpenSSH Vulnerabilities Impacting AOS-CX Switches

Potential Security Impact: Remote: Arbitrary Command Execution, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba CX 10000 Switch Series See Vulnerability Summary Aruba CX 4100i Switch Series See Vulnerability Summary Aruba CX 6000 Switch...

6.5CVSS6.7AI score0.93305EPSS
Exploits12
HPE Security Bulletins
HPE Security Bulletins
•added 2024/05/17 12:0 a.m.•2 views

HPESBST04649 rev.1 - HPE SAN Switches with Brocade Fabric OS (FOS), Remote Code Execution and Elevated Privileges Vulnerability

Potential Security Impact: Remote: Arbitrary Code Execution, Elevated Privileges SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE B-series SN2600B SAN Extension Switch - v9.x prior to v9.1.1d1 HPE B-series SN3600B Fibre Channel Switch - v9.x prior to v9.1.1d1 HPE B-series SN470...

9.8CVSS6.1AI score0.01205EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2024/04/30 12:0 a.m.•2 views

HPESBGN04639 rev.1 - HPE OneView, Multiple Vulnerabilities

Potential Security Impact: Remote: Bypass Security Restrictions, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView - All versions prior to 8.90 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-42717 |...

7.5CVSS6.1AI score0.03206EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
•added 2024/04/15 12:0 a.m.•2 views

HPESBHF04632 rev.3 - HPE Compute Scale-up Server 3200, Superdome Flex and Superdome Flex 280 servers, Local Buffer Overflow

Potential Security Impact: Local: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Compute Scale-up Server 3200 - Prior to v1.20.128 HPE Superdome Flex 280 Server - Prior to v1.80.20 HPE Superdome Flex Server - Prior to v3.100.26 CVSS Scores: | CVE | CVSS Vector...

7.8CVSS7AI score0.00287EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/04/15 12:0 a.m.•2 views

HPESBHF04633 rev.1 - HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Servers, Privilege Elevation and Arbitrary Code Execution

Potential Security Impact: Local: Execution of Arbitrary Code With Privilege Elevation, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Compute Scale-up Server 3200 - Prior to v1.20.128 HPE Superdome Flex 280 Server - Prior to v1.70.14 HPE Superdome Flex Server...

9.8CVSS6.2AI score0.00995EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/04/15 12:0 a.m.•2 views

HPESBHF04634 rev.1 - HPE Compute Scale-up Server 3200 Server, Disclosure of Sensitive Information

Potential Security Impact: Remote: Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Compute Scale-up Server 3200 - Prior to v1.10.342 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2024-22440 |...

6.8CVSS6.1AI score0.00429EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/04/11 12:0 a.m.•2 views

HPESBNW04628 rev.1 - HPE OfficeConnect 1820 Network switches, Cross-Site Request Forgery (CSRF)

Potential Security Impact: Local: Cross-Site Request Forgery CSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OfficeConnect 1820 8G Switch J9979A - Firmware versions prior to PT.02.19 HPE OfficeConnect 1820 8G PoE+ 65W Switch J9982A - Firmware versions prior to PT.02.19 HP...

3.5CVSS6.1AI score0.00206EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/04/09 12:0 a.m.•2 views

HPESBGN04598 rev.1 - HPE Unified Correlation Analyzer (UCA), Multiple Vulnerabilities

Potential Security Impact: Remote: Code Execution, Denial of Service DoS, Unauthorized Access, memory corruption, XML External Entity XXE, Insecure Deserialization SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified Correlation Analyzer UCA - Prior to v4.4.0 CVSS Scores: |...

10CVSS6.7AI score0.99654EPSS
Exploits42
HPE Security Bulletins
HPE Security Bulletins
•added 2024/04/03 12:0 a.m.•2 views

HPESBGN04629 rev.1 - HPE Unified OSS Console Assurance Monitoring (UOCAM), Multiple Vulnerabilities

Potential Security Impact: Local: Disclosure of Sensitive Information, Unauthorized Disclosure of Information, Server-Side Request Forgery SSRF; Remote: Authentication Bypass, Denial of Service DoS, Server-Side Request Forgery SSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. H...

9.8CVSS6.6AI score0.04581EPSS
Exploits5
HPE Security Bulletins
HPE Security Bulletins
•added 2024/04/02 12:0 a.m.•2 views

HPESBHF04593 rev.6 - HPE ProLiant DL/DX/ML/SY/RL/XL/Edgeline Servers Using BIOS (PixieFail), Multiple Vulnerabilities

Potential Security Impact: Local: Unauthorized Access; Remote: Code Execution, Denial of Service DoS, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen11 - Prior to v1.4803-14-2024 HPE ProLiant DL110 Gen11 - Prior to v2.1603-01-2024 HPE ProLiant...

8.8CVSS6.7AI score0.02084EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2024/04/02 12:0 a.m.•2 views

HPESBST04630 rev.1 - HPE MSA SAN Storage VSS Provider and CAPI Proxy Software, Elevation of Privilege

Potential Security Impact: Local: Elevation of Privilege, Unquoted Search Path SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE MSA 1040 SAN Storage - Prior to v4.1.3.83 HPE MSA 1050 SAN Storage - Prior to v4.1.3.83 HPE MSA 1060 Storage - Prior to v4.1.3.83 HPE MSA 2040 SAN...

7.3CVSS6.1AI score0.00181EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/26 12:0 a.m.•2 views

HPESBMU04626 rev.1 - HPE IceWall Products, Remote Denial of Service (DoS)

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. IceWall Gen11 Enterprise Edition 11.0 Windows - IceWall Gen11 Agent only IceWall Gen11 Standard Edition 11.0 Windows - IceWall Gen11 Agent only IceWall SSO Agent Option 10.0...

6.5CVSS6.1AI score0.00424EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/26 12:0 a.m.•2 views

HPESBNW04627 rev.2 - HPE ArubaOS-Switch Switches, Authenticated Denial of Service Vulnerability in ArubaOS-Switch SSH Daemon

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 5400R zl2 Switch Series See description summary for more details. Aruba 2930F Switch Series See description summary for more details. Aruba 2920 Switch Series See...

4.9CVSS6.1AI score0.00523EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/20 12:0 a.m.•2 views

HPESBST04611 rev.1 - Certain HPE StoreEasy Servers Using Certain Intel Processors, INTEL-SA-00960, 2024.1 IPU - Intel Xeon Processor Advisory, Local Escalation of Privilege Vulnerability

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEasy 1660 Storage - Prior to v2.0003-06-2024 HPE StoreEasy 1860 Storage - Prior to v2.0003-06-2024 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- |...

6.1CVSS6.1AI score0.00247EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/15 12:0 a.m.•2 views

HPESBGN04618 rev.1 - HPE Unified OSS Console Assurance Monitoring (UOCAM), Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Stack Overflow; Remote: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified OSS Console UOC - Prior to v3.1.3 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

8.1CVSS6.7AI score0.17673EPSS
Exploits9
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04614 rev.1 - Certain HPE Edgeline Servers Using Certain Intel Processors, INTEL-SA-00960, 2024.1 IPU - Intel Xeon Processor Advisory, Local Escalation of Privilege Vulnerability

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Edgeline e920t Server Blade - Prior to v2.0002-22-2024 HPE Edgeline e920 Server Blade - Prior to v2.0002-22-2024 HPE Edgeline e920d Server Blade - Prior to v2.0002-22-2024...

6.1CVSS6.1AI score0.00247EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04613 rev.1 - Certain HPE Apollo/XL Servers Using Certain Intel Processors, INTEL-SA-00960, 2024.1 IPU - Intel Xeon Processor Advisory, Local Escalation of Privilege Vulnerability

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 2000 Gen10 Plus System - Prior to v2.0002-22-2024 HPE ProLiant XL220n Gen10 Plus Server - Prior to v2.0002-22-2024 HPE ProLiant XL290n Gen10 Plus Server - Prior to...

6.1CVSS6.1AI score0.00247EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04616 rev.1 - HPE Synergy Servers Using Intel Server Platform Services (SPS) Firmware, INTEL-SA-00923, 2024.1 IPU - Intel Chipset Software and SPS Advisory, Remote Denial of Service Vulnerability

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy 480 Gen10 Plus Compute Module - Prior to v04.04.04.603.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2023-35191 |...

6.8CVSS6.1AI score0.00516EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04607 rev.1 - Certain HPE ProLiant DL/DX Servers Using Certain Intel Processors, INTEL-SA-00960, 2024.1 IPU - Intel Xeon Processor Advisory, Local Escalation of Privilege Vulnerability

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL110 Gen10 Plus Telco server - Prior to v2.0002-22-2024 HPE ProLiant DL360 Gen10 Plus server - Prior to v2.0003-06-2024 HPE ProLiant DL380 Gen10 Plus server -...

6.1CVSS6.1AI score0.00247EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04623 rev.1 - HPE Apollo/XL Servers Using Intel Server Platform Services (SPS) Firmware, INTEL-SA-00923, 2024.1 IPU - Intel Chipset Software and SPS Advisory, Remote Denial of Service Vulnerability

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant XL220n Gen10 Plus Server - Prior to v04.04.04.603.0 HPE Apollo 2000 Gen10 Plus System - Prior to v04.04.04.603.0 HPE ProLiant XL290n Gen10 Plus Server - Prior to...

6.8CVSS6.1AI score0.00516EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04602 rev.1 - Certain HPE ProLiant DL/ML and Microservers Using Certain Intel Processors, INTEL-SA-00929, 2024.1 IPU - BIOS Advisory, Local Escalation of Privilege Vulnerability

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant MicroServer Gen10 Plus v2 - Prior to v2.0002-01-2024 HPE ProLiant DL20 Gen10 Plus server - Prior to v2.0002-01-2024 HPE ProLiant ML30 Gen10 Plus server - Prior to...

7.2CVSS6.1AI score0.0011EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04612 rev.1 - Certain HPE Synergy Servers Using Certain Intel Processors, INTEL-SA-00960, 2024.1 IPU - Intel Xeon Processor Advisory, Local Escalation of Privilege Vulnerability

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy 480 Gen10 Plus Compute Module - Prior to v2.0002-22-2024 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2023-22655 |...

6.1CVSS6.1AI score0.00247EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04615 rev.1 - HPE Edgeline Servers Using Intel Server Platform Services (SPS) Firmware, INTEL-SA-00923, 2024.1 IPU - Intel Chipset Software and SPS Advisory, Remote Denial of Service Vulnerability

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Edgeline e920t Server Blade - Prior to v04.04.04.603.0 HPE Edgeline e920 Server Blade - Prior to v04.04.04.603.0 HPE Edgeline e920d Server Blade - Prior to v04.04.04.603.0...

6.8CVSS6.1AI score0.00516EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04605 rev.1 - HPE ProLiant DL/DX Servers Using Intel Server Platform Services (SPS) Firmware, INTEL-SA-00923, 2024.1 IPU - Intel Chipset Software and SPS Advisory, Remote Denial of Service Vulnerability

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL110 Gen10 Plus Telco server - Prior to v04.04.04.603.0 HPE ProLiant DL360 Gen10 Plus server - Prior to v04.04.04.603.0 HPE ProLiant DL380 Gen10 Plus server - Pri...

6.8CVSS6.1AI score0.00516EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04606 rev.1 - Certain HPE ProLiant DL/ML and MicroServer Using Certain Intel Processors, INTEL-SA-00898, 2024.1 IPU - Intel Atom Processor Advisory, Local Disclosure of Information Vulnerability

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen11 - Prior to v1.4401-18-2024 HPE ProLiant ML30 Gen11 - Prior to v1.4401-18-2024 HPE ProLiant MicroServer Gen11 - Prior to v1.4401-18-2024 CVSS Scores: ...

6.5CVSS6.6AI score0.00546EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/12 12:0 a.m.•2 views

HPESBHF04609 rev.1 - Certain HPE ProLiant DL/ML and MicroServer Servers Using Certain Intel Processors, INTEL-SA-00982, 2024.1 IPU - Intel Processor Return Predictions Advisory, Local Disclosure of Information Vulnerability

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant MicroServer Gen11 - Prior to v1.4401-18-2024 HPE ProLiant DL20 Gen11 - Prior to v1.4401-18-2024 HPE ProLiant ML30 Gen11 - Prior to v1.4401-18-2024 CVSS Scores: ...

5.5CVSS6.1AI score0.00269EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/08 12:0 a.m.•2 views

HPESBGN04595 rev.1 - HPE Unified OSS Console Assurance Monitoring (UOCAM), Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Unauthorized Data Access, Insecure Deserialization; Remote: Disclosure of Sensitive Information, Gain Unauthorized Access, User Validation Failure SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified OSS Console UOC...

8.1CVSS6.6AI score0.99999EPSS
Exploits21
HPE Security Bulletins
HPE Security Bulletins
•added 2024/03/05 12:0 a.m.•2 views

HPESBNW04604 rev.2 - HPE Aruba ArubaOS, Multiple Vulnerabilities

Potential Security Impact: Local: Arbitrary File Deletion; Remote: Arbitrary Code Execution, Denial of Service DoS, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba SD-WAN Software and Gateways See vulnerability summary for details Aruba...

9.1CVSS6.2AI score0.0124EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/02/26 12:0 a.m.•2 views

HPESBNW04601 rev.2 - HPE Aruba Networking ClearPass Policy Manager, Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary Code Execution, Code Execution, Cross-Site Scripting XSS, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Policy Manager Please see vulnerability summary for details. Affected Products...

9.8CVSS7.1AI score0.80819EPSS
Exploits15
HPE Security Bulletins
HPE Security Bulletins
•added 2024/02/26 12:0 a.m.•2 views

HPESBMU04600 rev.1 - HPE IceWall products, Remote Denial of Service (DoS)

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE IceWall Federation Version 4.0 RHEL 7, 8 and 9 - SAML IdP, Office 365 module, OIDC RP and OIDC OP IceWall Gen11 Password Reset Option - 11.0 RHEL 7, 8 and 9 IceWall Identit...

5.9CVSS6.7AI score0.01655EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/02/20 12:0 a.m.•2 views

HPESBMU04599 rev.1 - HPE IceWall products, Remote Disclosure of Information

Potential Security Impact: Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE IceWall Federation - 4.0 RHEL 8 and Windows - SAML IdP, Office 365 module, OIDC RP and OIDC OP. IceWall Gen11 Password Reset Option - 11.0 RHEL 8 and Windows IceWall...

5.3CVSS6.1AI score0.14286EPSS
Exploits3
HPE Security Bulletins
HPE Security Bulletins
•added 2024/02/15 12:0 a.m.•2 views

HPESBHF04596 rev.2 - HPE SimpliVity Servers Using SSH, Remote Authentication Bypass (Terrapin Attack)

Potential Security Impact: Remote: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. SimpliVity Omnistack for HPE - Version 4.2.0 and earlier CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2023-48795 |...

5.9CVSS6.7AI score0.93305EPSS
Exploits4
HPE Security Bulletins
HPE Security Bulletins
•added 2024/02/13 12:0 a.m.•2 views

HPESBHF04594 rev.1 - Certain HPE ProLiant Servers Using AMD EPYC Processors (PixieFail), Multiple Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL325 Gen11 Server - Prior to v1.5801042024 HPE ProLiant DL345 Gen11 Server - Prior to v1.5801042024 HPE ProLiant DL365 Gen11 Server -...

8.8CVSS6.7AI score0.02084EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2024/02/13 12:0 a.m.•2 views

HPESBHF04591 rev.1 - Certain HPE ProLiant AMD Servers Using Certain AMD EPYC Processors, AMD-SB-7009: AMD Processor Vulnerabilities Security Notice, Local Arbitrary Code Execution

Potential Security Impact: Local: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL325 Gen11 Server - Prior to v1.5801042024 HPE ProLiant DL345 Gen11 Server - Prior to v1.5801042024 HPE ProLiant DL365 Gen11 Server - Prior to v1.5801042024 HPE...

8.4CVSS6.1AI score0.00173EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/02/12 12:0 a.m.•2 views

HPESBHF04566 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processors, INTEL-SA-00950, 2023.4 IPU Out-of-Band (OOB) - Intel Processor Advisory, Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen10 Plus - Prior to HPE OmniStack Firmware Version 20240131 CVSS Scores: | CVE | CVSS Vector | Base Scor...

8.8CVSS6.1AI score0.01728EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2024/02/05 12:0 a.m.•2 views

HPESBGN04590 rev.1 - HPE Unified OSS Console Assurance Monitoring (UOCAM), Multiple Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Arbitrary File Modification; Remote: Arbitrary Code Execution, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified OSS Console UOC - Prior to v3.1.1 CVSS Scores: | CVE | CVSS Vector | Base...

10CVSS6.7AI score0.99654EPSS
Exploits57
HPE Security Bulletins
HPE Security Bulletins
•added 2024/01/23 12:0 a.m.•2 views

HPESBHF04576 rev.4 - HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Servers, Multiple Vulnerabilities (PixieFAIL)

Potential Security Impact: Remote: Code Execution, Denial of Service DoS, Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Superdome Flex Server - Prior to v3.100.26 HPE Superdome Flex 280 Server - Prior to v1.80.20 HPE Compute Scale-up Server 3200 -...

8.8CVSS6.7AI score0.02084EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2024/01/22 12:0 a.m.•2 views

HPESBGN04569 rev.1 - HPE Unified Mediation Bus (UMB), Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Sensitive Information, URL Redirection, Unauthenticated Arbitrary Code Execution, Unauthorized Write Access to the File System, memory corruption, XML External Entity XXE, Host Header Injection; Remote: Bypass Security...

9.8CVSS6.7AI score0.81147EPSS
Exploits21
Total number of security vulnerabilities1147