Lucene search
K
HpeMost viewed

1147 matches found

HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/14 12:0 a.m.•2 views

HPESBHF04171 rev.1 - HPE Gen10 Systems using certain Intel Processors, Local Arbitrary Code Execution

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen10 Server - Prior to ROM v2.30 HPE ProLiant ML30 Gen10 Server - Prior to ROM v2.30 HPE Apollo 4200 Gen10 Server - Prior to ROM v2.50 HPE ProLiant BL460c...

7.5CVSS6.8AI score0.00327EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/08 12:0 a.m.•2 views

HPESBHF04182 rev.1 - HPE Superdome X Servers, Remote Denial of Service (DoS)

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP Superdome X Base Enclosure - Prior to Bundle 8.8.50 HPE Integrity Superdome X Server - Prior to Bundle 8.8.50 HPE Integrity Superdome X with BL920s Blades - Prior to Bundle...

7.5CVSS6.7AI score0.07471EPSS
Exploits5
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/07 12:0 a.m.•2 views

HPESBNW04181 rev.2 - HPE Aruba ClearPass Policy Manager, Multiple Vulnerabilities

Potential Security Impact: Local: Escalation of Privilege; Remote: Arbitrary Command Execution, Authentication Bypass, Denial of Service DoS, SQL Injection, Insecure Deserialization SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Policy Manager Platform - Prior to...

9CVSS6.7AI score0.99295EPSS
Exploits82
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/30 12:0 a.m.•2 views

HPESBHF04148 rev.1 - HPE Integrity Integrated Lights-Out 4 (iLO 4) for Superdome X Servers, Remote Memory Corruption

Potential Security Impact: Remote: memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP Superdome X Base Enclosure - Prior to Bundle 8.8.50 HPE Integrity Superdome X Server - Prior to Bundle 8.8.50 HPE Integrity Superdome X with BL920s Blades - Prior to Bundle 8.8....

7.5CVSS7AI score0.01464EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/16 12:0 a.m.•2 views

HPESBNS04172 rev.2 - HPE BackBox Software, Remote Unauthorized Access

Potential Security Impact: Remote: Unauthorized Access, Unauthorized Access to Data, Unauthorized Data Modification SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE BackBox Software T0954 T0954V04^AAO, T0954V04^AAQ, T0954V04^AAR and T0954V04^AAS CVSS Scores: | CVE | CVSS Vector...

8.1CVSS6.1AI score0.00905EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/09 12:0 a.m.•2 views

HPESBST04167 rev.1 - HPE StoreEasy Gen10 Systems Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Storage File Controller Prior to version 2.50 HPE StoreEasy 1X60 Storage Prior to version 2.50 HPE StoreEasy 1450 Storage...

7.8CVSS6.6AI score0.00402EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/09 12:0 a.m.•2 views

HPESBST04168 rev.1 - HPE StoreEasy Gen9 Systems Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEasy 1X30 Storage Prior to version 2.90 HPE StoreEasy 1X40 Storage Prior to version 2.90 HPE StoreEasy 1X50 Storage...

7.8CVSS6.8AI score0.00347EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•2 views

HPESBHF04159 rev.1 - HPE Synergy Gen9 Servers Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy 480 Gen9 Compute Module - Prior to version 2.90 HPE Synergy 620 Gen9 Compute Module - Prior to version 2.90 HPE Synergy 660 Gen9 Compute Module - Prior to version...

7.8CVSS6.8AI score0.00347EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•2 views

HPESBHF04155 rev.1 - HPE Gen10 Servers Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen10 Server - Prior to version 2.3.0, and SPS v 05.01.04.303 HPE ProLiant ML30 Gen10 Server - Prior to...

7.5CVSS6.6AI score0.00402EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•2 views

HPESBHF04165 rev.1 - HPE Edgeline m710x Gen9 Servers Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m710x Server Blade - Prior to version H07 1.90 HPE ProLiant m710x-L Server Blade - Prior to version H07 1.90 CVSS Scores: | CVE | CVSS...

7.5CVSS6.6AI score0.00383EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•2 views

HPESBUX04160 rev.2 - HP-UX OpenSSL, Multiple Vulnerabilities

Potential Security Impact: Local: Unauthorized Access to Diagnostic Data, Unauthorized Arbitrary File Creation, Unqualified Configuration Change; Remote: Unauthorized Access to Diagnostic Data, Unauthorized Arbitrary File Creation SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed...

4.7CVSS6.6AI score0.03838EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•2 views

HPESBHF04163 rev.1 - HPE Edgeline m510 Gen9 Server Using Certain Intel Processors, Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m510 Server Cartridge - Prior to version H05 1.86 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-12357 |...

7.8CVSS6.8AI score0.00347EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•2 views

HPESBHF04150 rev.1 - HPE Gen10 Servers with Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL360 Gen10 Server - Prior to version 2.50 HPE ProLiant DL380 Gen10 Server - Prior to version 2.50 HPE ProLiant...

7.8CVSS6.6AI score0.00402EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•2 views

HPESBHF04156 rev.1 - HPE Gen9 Servers Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant ML30 Gen9 Server - Prior to version 3.00 HPE ProLiant DL20 Gen9 Server - Prior to version 3.00 CVSS Scores: | CVE | CVSS Vector | Base...

7.5CVSS6.6AI score0.00383EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•2 views

HPESBHF04162 rev.1 - HPE OneView Global Dashboard Release 2.31, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Privileged Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView Global Dashboard - only 2.31 - only version 2.31 is impacted. The issue is resolved in 2.32. CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | -...

5.5CVSS6.2AI score0.00232EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/01 12:0 a.m.•2 views

HPESBUX04166 rev.2 - HPE HP-UX System Management Homepage, Multiple Remote Vulnerabilities

Potential Security Impact: Local: Authentication Bypass; Remote: Arbitrary Code Execution, Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX System Management Software A.3.2.21.03 or earlier HPE System Management Homepage A.3.2.21.03 or earlier CVSS Scores: | CV...

7.8CVSS6.6AI score0.03873EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/25 12:0 a.m.•2 views

HPESBST04138 rev.1 - HPE 3Par and Primera StoreServ Management Console (SSMC) using sudo, Local Buffer Overflow

Potential Security Impact: Local: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR StoreServ Management and Core Software Media SSMC prior to 3.8 are vulnerable CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-3156 |...

7.8CVSS6.8AI score0.99295EPSS
Exploits81
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/20 12:0 a.m.•2 views

HPESBHF04149 rev.1 - HPE StoreOnce Systems using HPE Integrated Lights-Out 5 (iLO 5), Multiple Remote and Local vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreOnce 5650 - Prior to 4.3.0 HPE StoreOnce 5200 - Prior to 4.3.0 HPE StoreOnce 3640 - Prior to 4.3.0...

7.6CVSS6.3AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/18 12:0 a.m.•2 views

HPESBHF04130 rev.2 - HPE Synergy Systems with Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4), Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy 480 Gen9 Compute Module - Prior to HPE Synergy Service Pack SSP 2021.05.01 HPE Synergy 480 Gen1...

7.6CVSS6.3AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/18 12:0 a.m.•2 views

HPESBHF04133 rev.2 - HPE ProLiant Servers, Apollo Products, Moonshot and Edgeline Blades, and Storage Products with Integrated Lights-Out 5 (iLO 5), Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to version 2.44 HPE 3PAR Service Processor ...

7.6CVSS6.1AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/14 12:0 a.m.•2 views

HPESBST04139 rev.1 - HPE Fibre Channel and SAN Switches with Brocade Fabric OS (FOS) Prior to v9.0.1a, Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Unauthorized Write Access to the File System; Remote: Authentication Bypass, Denial of Service DoS, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Brocade 32Gb Fibre Channel SAN Switch...

7.8CVSS6.8AI score0.99019EPSS
Exploits16
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/14 12:0 a.m.•2 views

HPESBST04137 rev.1 - HPE Fibre Channel and SAN Switches with Brocade Fabric OS (FOS) Prior to v8.2.3, Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Unauthorized Write Access to the File System; Remote: Denial of Service DoS, Unauthorized Data Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Brocade 16Gb Fibre Channel SAN Switch for HPE Synergy - Prior to 8.2...

7.8CVSS6.8AI score0.62906EPSS
Exploits3
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/12 12:0 a.m.•2 views

HPESBNW04145 rev.4 - Aruba Instant Access Points, ArubaOS Access Points when Managed by Mobiltity Controllers, Aruba Instant On, Aruba UXI Sensors, 802.11 Frame Aggregation and Fragmentation Vulnerabilities

Potential Security Impact: Remote: Disclosure of Sensitive Information, Unauthorized Data Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 1XX Series Campus Access Points - Prior to 6.5.4.19, 6.5.4.20, 8.3.0.15, 8.3.0.16, 8.5.0.12, 8.5.0.13, 8.6.0.8, 8.6.0.9, 8.7.1....

6.5CVSS6.7AI score0.07604EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/05 12:0 a.m.•2 views

HPESBGN04129 rev.1 - HPE iLO Amplifier Pack using Bootstrap Framework, Remote Code Execution and Cross Site Scripting (XSS)

Potential Security Impact: Remote: Code Execution, Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Prior to Version 1.90 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2016-10735 |...

9.8CVSS6.7AI score0.1686EPSS
Exploits6
HPE Security Bulletins
HPE Security Bulletins
•added 2021/04/26 12:0 a.m.•2 views

HPESBNW04126 rev.2 - Aruba AirWave Management Platform, Multiple Vulnerabilities

Potential Security Impact: Remote: Escalation of Privilege, SQL Injection, URL Redirection, Unauthorized Access, Authentication Restriction Bypass, XML External Entity XXE, Insecure Deserialization SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba AirWave Management Platform -...

9CVSS6.1AI score0.12638EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/04/26 12:0 a.m.•2 views

HPESBNW04127 rev.2 - Aruba ClearPass Policy Manager, Multiple Vulnerabilities

Potential Security Impact: Local: Escalation of Privilege; Remote: Arbitrary Command Execution, Cross-Site Scripting XSS, Disclosure of Privileged Information, Server-Side Request Forgery SSRF, XML External Entity XXE SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass...

9.8CVSS6.1AI score0.0322EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/04/21 12:0 a.m.•2 views

HPESBHF04091 rev.1 - HPE Intel 700-DA series Ethernet Controllers, Local Multiple Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Ethernet 10Gb 2-port FLR-SFP+ X710-DA2 Adapter -Prior to Version 10.54.7 HPE Ethernet 10Gb 2-port SFP+ X710-DA2 Adapter -Prior to Version 10.54.7 Intel X710-DA2 Ethernet...

6CVSS6.1AI score0.003EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/04/19 12:0 a.m.•2 views

HPESBHF04116 rev.3 - HPE Gen10 and Gen10 Plus Servers, GRUB2 Secure Boot Vulnerability, Local Execution of Arbitrary Code

Potential Security Impact: Local: Execution of Arbitrary Code SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. VMware Upgrade Pack VUP 1.4.1, VUP 1.4.2 - See link to Software Delivery Repository - vibsdepot in Resolution Scripting Toolkit for Linux - Prior to version 11.5121 Apr 20...

8.2CVSS6.8AI score0.01152EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/04/12 12:0 a.m.•2 views

HPESBGN04086 rev.1 - HPE IceWall SSO Domain Gateway, Remote Cross Site Scripting

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. IceWall SSO Dgfw 10.0 RHEL, HP-UX, Windows and 11.0 Windows CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-26582 |...

6.1CVSS6.4AI score0.00701EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/26 12:0 a.m.•2 views

HPESBHF04102 rev.2 - HPE Superdome Flex and Superdome Flex 280 BMC web interface vulnerability, Remote Denial of Service

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Superdome Flex Server - Prior to version 3.30.142 HPE Superdome Flex 280 Server - Prior to version 1.10.272 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --...

6.5CVSS6.6AI score0.00842EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/23 12:0 a.m.•2 views

HPESBGN04109 rev.1 - HPE iLO Amplifier Pack, Multiple Remote Cross-Site Scripting (XSS) Vulnerabilities

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Prior to version 1.80 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-11022 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:...

6.9CVSS6.7AI score0.99019EPSS
Exploits11
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/23 12:0 a.m.•2 views

HPESBGN04108 rev.1 - HPE iLO Amplifier Pack, Remote Cross-Site Scripting (XSS) Vulnerability

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Prior to version 1.80 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2016-7103 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

6.1CVSS6.7AI score0.2258EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/23 12:0 a.m.•2 views

HPESBGN04107 rev.2 - HPE iLO Amplifier Pack, Remote Cross-Site Scripting (XSS) Vulnerability

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Prior to version 1.95 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-26580 | CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:...

6.1CVSS6.4AI score0.00621EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/19 12:0 a.m.•2 views

HPESBMU04112 rev.1 - HPE Unified Data Management (UDM), Local Disclosure of Privileged Information

Potential Security Impact: Local: Disclosure of Privileged Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified Data Management UDM Versions 1.2009.0 and 1.2101.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-26579 |...

7.1CVSS6.2AI score0.00211EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/03/17 12:0 a.m.•2 views

HPESBNW04111 rev.2 - Aruba Instant Access Points, ArubaOS Mobility Conductor, Mobility Controllers, Access Points when Managed by Mobility Controllers, and SD-WAN Gateways, SAD DNS Side Channel Attack Leading to Remote Disclosure of Information

Potential Security Impact: Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 7000 Series Mobility Controllers 6.4.4.24, 6.5.4.18, 8.3.0.14, 8.5.0.11, 8.6.0.7, 8.7.1.1 and below Aruba 7200 Series Mobility Controllers 6.4.4.24, 6.5.4.18, 8.3.0.1...

7.4CVSS6.7AI score0.06692EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/25 12:0 a.m.•2 views

HPESBNW04092 rev.2 - Aruba Mobility Controllers, Aruba Access Points when managed by Mobility Controllers, Aruba SD-WAN Gateways, and Aruba Instant Access Points, Multiple Remote Vulnerabilities in dnsmasq

Potential Security Impact: Remote: Compromise of System Integrity, Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 2XX Series Campus Access Points All versions Aruba 3XX Series Campus Access Points All versions Aruba 7000 Series Mobility Controllers...

4.3CVSS7AI score0.04873EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/24 12:0 a.m.•2 views

HPESBNW04090 rev.3 - Aruba AirWave Management Platform, Multiple Vulnerabilities

Potential Security Impact: Remote: Cross-Site Request Forgery CSRF, Cross-Site Scripting XSS, SQL Injection, Unauthorized Access, Authentication Restriction Bypass, XML External Entity XXE SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba AirWave Management Platform - Prior to...

9CVSS6.1AI score0.03119EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/19 12:0 a.m.•2 views

HPESBNW04089 rev.2 - Aruba ClearPass Policy Manager, Multiple Vulnerabilities

Potential Security Impact: Remote: Authentication Bypass, Escalation of Privilege, Execution of Arbitrary Commands, Unauthenticated Arbitrary Code Execution, Unauthorized Access, Server-Side Request Forgery SSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Polic...

9CVSS6.1AI score0.02452EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/03 12:0 a.m.•2 views

HPESBHF04080 rev.1 - HPE Apollo 70 System's Baseboard Management Controller (BMC) firmware have multiple local vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Directory Traversal, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 70 System -Prior to Version 3.0.14.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-25142 |...

7.8CVSS6.9AI score0.00839EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/02 12:0 a.m.•2 views

HPESBNW04083 rev.2 - HPE and Aruba L2/L3 Switches, Remote Memory Corruption

Potential Security Impact: Remote: memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 5400R zl2 Switch Series - Prior to KB.16.10.0012, KB.16.09.0015, KB.16.08.0019 Aruba 3810M Switch Series - Prior to KB.16.10.0012, KB.16.09.0015, KB.16.08.0019 Aruba 2930M...

7.5CVSS7AI score0.01464EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/02 12:0 a.m.•2 views

HPESBNW04082 rev.1 - HPE and Aruba L2/L3 Switches, Local Denial of Service (DoS)

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 5400R zl2 Switch Series - Prior to KB.16.10.0012 Aruba 3810M Switch Series - Prior to KB.16.10.0012 Aruba 2930M Switch Series - Prior to WC.16.10.0012 Aruba 2930F Switch...

4.9CVSS6.1AI score0.00296EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/02/02 12:0 a.m.•2 views

HPESBHF04084 rev.1 - HPE Moonshot Provisioning Manager, Remote Buffer Overflow in khuploadfile.cgi

Potential Security Impact: Remote: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Moonshot Provisioning Manager v1.20 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-25139 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L | 7.3 |...

10CVSS7AI score0.07876EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/01/26 12:0 a.m.•2 views

HPESBNS04076 rev.1 - HPE Web ViewPoint Suite, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Disclosure of Sensitive Information, Unauthorized Access to Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Web ViewPoint Enterprise T0986 - L, J and H series Web ViewPoint Plus T0952 - L, J and H series Web ViewPoint T0320 ...

5.9CVSS6.4AI score0.01424EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/01/21 12:0 a.m.•2 views

HPESBHF04073 rev.1 - HPE Cloudline BMC firmware, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Directory Traversal, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cloudline CL5800 Gen10 Server Version 1.08.0.0 HPE Cloudline CL3100 Gen10 Server Version 1.10.0.0 - Version 1.08.0.0 for Cascade Lake H...

7.8CVSS7AI score0.00397EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/01/13 12:0 a.m.•2 views

HPESBHF04074 rev.1 - HP/HPE R7000 and R5000 Uninterruptable Power System Network Module Firmware (AF465A), Ripple20 Multiple Vulnerabilities

Potential Security Impact: Remote: Code Execution, Denial of Service DoS, Disclosure of Sensitive Information, Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE UPS Network Module - Prior to 1.12.002 - The HPE UPS Network Module is an option for HP/HPE...

10CVSS6.7AI score0.36965EPSS
Exploits21
HPE Security Bulletins
HPE Security Bulletins
•added 2020/12/17 12:0 a.m.•2 views

HPESBGN04067 rev.2 - HPE iLO Amplifier Pack server version 1.70, Local Code Execution and Local Elevation Privilege

Potential Security Impact: Local: Code Execution, Elevation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. iLO Amplifier Pack - Ver 1.70 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7203 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H...

9.8CVSS7AI score0.04985EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/12/16 12:0 a.m.•2 views

HPESBHF04069 rev.4 - HPE ProLiant Servers, Apollo Products, Converged Systems, and Storage Products with Integrated Lights-Out 5 (iLO 5) or Integrated Lights-Out 4 (iLO 4), Remote Disclosure of Information

Potential Security Impact: Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v2.31 HPE Integrated Lights-Out 4 iLO 4 - Prior to v2.76 HPE ConvergedSystem 700 CS700 - Varies, based on...

5.3CVSS6.2AI score0.01472EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/12/16 12:0 a.m.•2 views

HPESBST04075 rev.1 - HPE StoreEver MSL2024 Tape Library and HPE StoreEver 1/8 G2 Tape Autoloader, Remote Cross-site Request Forgery (CSRF)

Potential Security Impact: Remote: Cross-Site Request Forgery CSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEver MSL Tape Libraries All versions prior to 7.30 HPE StoreEver 1/8 G2 Tape Autoloaders All versions prior to 5.40 CVSS Scores: | CVE | CVSS Vector | Base...

8.8CVSS7AI score0.00571EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/30 12:0 a.m.•2 views

HPESBGN04063 rev.1 - HPE Edgeline Infrastructure Manager, Remote Authentication Bypass

Potential Security Impact: Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Edgeline Infrastructure Management Software - Prior to 1.21 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-7199 |...

10CVSS7AI score0.09187EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2020/11/30 12:0 a.m.•2 views

HPESBUX04065 rev.1 - HPE HP-UX Perl, Multiple Local and Remote Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX Perl Software E.5.28.0.A CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-18311 |...

9.8CVSS6.7AI score0.12093EPSS
Exploits1
Total number of security vulnerabilities1147