Lucene search
K
HpeMost viewed

1147 matches found

HPE Security Bulletins
HPE Security Bulletins
•added 2019/12/12 12:0 a.m.•2 views

HPESBHF03973 rev.1 - HPE Servers with certain Intel Processors, Local Disclosure of Information, Local Escalation of Privilege

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen10 Server - Prior to U442.1212062019 HPE ProLiant ML30 Gen10 Server - Prior to 1.8212062019 HPE ProLiant m710x Server Blade -...

7.9CVSS6.8AI score0.00676EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/11/13 12:0 a.m.•2 views

HPESBHF03967 rev.4 - HPE Servers with certain Intel(R) Xeon Scalable Processors, BIOS, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant BL460c Gen10 Server Blade - Prior to V2.22 Gen10 HPE ProLiant DL580 Gen10 Server - Prior to V2.22 Gen10 HPE...

8.2CVSS6.8AI score0.00381EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/11/13 12:0 a.m.•2 views

HPESBHF03969 rev.5 - HPE ProLiant Gen10 and Superdome Flex Servers using certain Intel Xeon Scalable Processors, Voltage Modulation, Local Denial of Service

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4200 Gen10 Server - Prior to V2.22 Gen10 ROM HPE ProLiant BL460c Gen10 Server Blade - Prior to V2.22 Gen10 ROM HPE ProLiant DL580 Gen10 Server - Prior to V2.22 Gen10...

6CVSS6.7AI score0.00356EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/11/13 12:0 a.m.•2 views

HPESBHF03972 rev.3 - HPE ProLiant, Synergy, Edgeline and Apollo Gen10 Server Platform using TPM, Remote Disclosure of Information

Potential Security Impact: Local: Disclosure of Information; Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy 660 Gen10 Compute Module - Prior to 73.20 HPE ProLiant XL230k Gen10 Server - Prior to 73.20 HPE ProLiant XL190r Gen10 Server -...

6.8CVSS6.5AI score0.03279EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/11/13 12:0 a.m.•2 views

HPESBHF03968 rev.4 - HPE Gen10 ProLiant, Apollo, Superdome Flex, and Synergy Servers using Intel CPU Transactional Synchronization Extensions (TSX) Asynchronous Abort (TAA), Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4200 Gen10 Server - Prior to V2.22 ROM HPE Apollo 2000 System - Prior to V2.22 ROM HPE ProLiant BL460c Gen10 Server Blade - Prior to V2.22 ROM HPE ProLiant DL580...

6.5CVSS6.8AI score0.03133EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/11/13 12:0 a.m.•2 views

HPESBHF03971 rev.6 - HPE ProLiant and Superdome Flex Servers using certain Intel Processors, SMM and TXT, Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4500 System - Prior to v2.22 HPE Apollo 4200 Gen10 Server - Prior to v2.22 HPE Apollo 2000 System - Prior to v2.22 HPE ProLiant BL460c Gen10 Server Blade - Prior to...

8.2CVSS6.8AI score0.00389EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/10/31 12:0 a.m.•2 views

HPESBUX03962 rev.2 - HP-UX NTP service, multiple vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Buffer Overflow; Remote: Compromise of System Integrity, Denial of Service DoS, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX NTP Software Prior to C.4.2.8.4.0 CVSS Scores: | CVE | CVSS Vector | Base...

9.8CVSS6.6AI score0.2932EPSS
Exploits15
HPE Security Bulletins
HPE Security Bulletins
•added 2019/10/15 12:0 a.m.•2 views

HPESBHF03960 rev.1 - HPE Lights Out 100 (LO100) Remote Management for ProLiant G1 - G6 servers, Remote Denial of Service

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Lights-Out 100 LO100 Remote Management all - denial of service CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-12264 |...

7.1CVSS6.8AI score0.08311EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/10/02 12:0 a.m.•2 views

HPESBST03959 rev.1 - HPE Command View Advanced Edition (CVAE) Multiple Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE Earlier than 8.6.5-00 HPE XP7 Command View Advanced Edition Suite Earlier than 8.6.5-00 CVSS Scores: | CVE | CVSS Vector | Base...

8.1CVSS6.7AI score0.37618EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
•added 2019/10/02 12:0 a.m.•2 views

HPESBST03958 rev.1 - HPE Command View Advanced Edition (CVAE) Multiple Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE Earlier than 8.6.4-00 HPE XP7 Command View Advanced Edition Suite Earlier than 8.6.4-00 CVSS Scores: | CVE | CVSS Vector | Base...

6.5CVSS6.7AI score0.05074EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2019/09/30 12:0 a.m.•2 views

HPESBHF03954 rev.1 - HPE UioT, Remote Unauthorized Access and Access to sensitive Data

Potential Security Impact: Remote: Unauthorized Access to Sensitive Information, Unauthorized Remote Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE IOT + GCP 1.2.4.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-11995 |...

9.6CVSS7AI score0.02122EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/09/30 12:0 a.m.•2 views

HPESBHF03955 rev.2 - HPE SimpliVity OmniStack, Local and Remote File Modification and Deletion

Potential Security Impact: Local: Creation and Deletion of Arbitrary Files; Remote: Creation and Deletion of Arbitrary Files SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen9 releases from 3.6.2 to 3.7.9 HPE SimpliVity 380 Gen10 releases from 3.7.1 to 3.7.9 H...

9.4CVSS7AI score0.0153EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/09/30 12:0 a.m.•2 views

HPESBST03956 rev.2 - HPE SimpliVity OmniStack, Local and Remote Arbitrary Command Execution

Potential Security Impact: Local: Arbitrary Command Execution; Remote: Arbitrary Command Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen9 releases from 3.6.2 to 3.7.9 HPE SimpliVity 380 Gen10 releases from 3.7.1 to 3.7.9 HPE SimpliVity 380 Gen10 G...

9.8CVSS7AI score0.07245EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/09/27 12:0 a.m.•2 views

HPESBGN03957 rev.1 - HPE Oneview for VMware vCenter, Remote Cross-Site Scripting

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView for VMware vCenter with Operations Manager and Log Insight 9.5 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-11992 |...

6.1CVSS6.4AI score0.01037EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/08/21 12:0 a.m.•2 views

HPESBST03953 rev.1 - HPE Command View Advanced Edition (CVAE), Multiple Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP P9000 Command View Advanced Edition Software 8.4.0-00 to earlier than 8.6.2-00 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- |...

9.8CVSS6.7AI score0.20985EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/08/21 12:0 a.m.•2 views

HPESBST03951 rev.1 - HPE Command View Advanced EditionCVAE (Virtual Appliance only), Remote Denial of Service

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE 8.5.2-00 to earlier than 8.6.1-02 HP P9000 Command View Advanced Edition Software 1TB 0-30TB LTU 8.5.2-00 to earlier than 8.6.1-...

7.5CVSS6.7AI score0.05287EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2019/08/06 12:0 a.m.•2 views

HPESBST03938 rev.1 - Command View Advanced Edition (CVAE) Products, Local and Remote Access Restriction Bypass

Potential Security Impact: Local: Access Restriction Bypass; Remote: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE earlier than 8.6.2-02 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-5408 |...

7.2CVSS6.6AI score0.01557EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/08/01 12:0 a.m.•2 views

HPESBST03946 rev.1 - HPE 3PAR StoreServ Management Console (SSMC), Multiple Vulnerabilities

Potential Security Impact: Remote: Authentication Bypass, Cross-Site Scripting XSS, Unauthorized Information Disclosure, Session Reuse, script injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR StoreServ Management and Core Software Media prior to 3.5.0.1 CVSS...

10CVSS6.7AI score0.04296EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/07/26 12:0 a.m.•2 views

HPESBUX03927 rev.1 - HP-UX BIND, Remote Denial of Service (DoS) and Remote Unauthorized Data Modification

Potential Security Impact: Remote: Denial of Service DoS, Unauthorized Data Modification SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX BIND BIND 9.11.1 prior to C.9.11.1.4.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-5740 |...

7.5CVSS6.7AI score0.59353EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/07/26 12:0 a.m.•2 views

HPESBHF03944 rev.1 - HPE HP2910al-48G switches, local Arbitrary Command Execution

Potential Security Impact: Local: Arbitrary Command Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP 2910-48G al Switch W.15.14.0016 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-5401 | CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L | 6.3...

6.5CVSS6.1AI score0.0054EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/07/08 12:0 a.m.•2 views

HPESBST03918 rev.1 - HPE 3PAR Service Processor (SP), remote Disclosure of Privileged Information

Potential Security Impact: Remote: Disclosure of Privileged Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR Service Processors version 4.1 through 4.4 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-11991 |...

10CVSS7AI score0.04695EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/07/05 12:0 a.m.•2 views

HPESBMU03941 rev.1 - HPE IceWall SSO Agent Option and IceWall MFA Remote Denial of Service

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. IceWall SSO Agent Option 10.0 RHEL, HP-UX, Windows and 11.0 RHEL HPE IceWall MFA 4.0EE MFA. Server LTU MFA Proxy - Agent module only included in MFA Proxy HPE IceWall.MFA4.0SE...

7.1CVSS6.4AI score0.01685EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/07/05 12:0 a.m.•2 views

HPESBHF03937 rev.1 - HPE UIoT Unauthorized Remote Access and Access to Sensitive Information

Potential Security Impact: Remote: Unauthorized Access to Sensitive Information, Unauthorized Data Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE IOT + GCP - 1.6, 1.5, 1.4.0, 1,4,1, 1.4.2, 1.2.4.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

9CVSS7AI score0.01566EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/31 12:0 a.m.•2 views

HPESBMU03922 rev.2 - HPE Smart Update Manager (SUM), Remote Unauthorized Access

Potential Security Impact: Remote: Unauthorized Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Smart Update Manager SUM Prior to 8.3.5 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-11988 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | 9.8 ...

9.8CVSS7AI score0.0142EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/29 12:0 a.m.•2 views

HPESBNS03925 rev.1 - HPE Nonstop Maintenance Entity family of products, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Integrated Maintenance Entity T1805 T1805A01 through T1805A01^AAG Maintenance Entity T2805 T2805A01 through T2805A01^AAT Blade Maintenance Entity FW T4805 T4805A01 through...

5.1CVSS6.2AI score0.00287EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/17 12:0 a.m.•2 views

HPESBHF03917 rev.3 - HPE Integrated Lights-Out 4 (iLO 4), and HPE Integrated Lights-Out 5 (iLO 5), Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Cross-Site Scripting XSS, Unauthorized Data Injection, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers -Prior to 1.40a HPE Integrated Lights-Out 4 iLO 4 -Prior to 2.70...

8.3CVSS6.7AI score0.02094EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/17 12:0 a.m.•2 views

HPESBST03928 rev.1 - Command View Advanced Edition (CVAE) Products using JDK, Multiple Vulnerabilities

Potential Security Impact: Local: Authentication Bypass; Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE XP7 Command View Advanced Edition Suite all - vulnerability eliminated after applying updated Oracle JDK 8u181 or later CVSS Scores: | CVE |...

5.9CVSS6.7AI score0.04676EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/14 12:0 a.m.•2 views

HPESBHF03931 rev.3 - HPE Products using Server Platform Services (SPS), Local Escalation of Privilege Vulnerability

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL120 Gen10 Server prior to SPS FW 4.00.04.381 HPE ProLiant DL160 Gen10 Server prior to SPS FW 4.00.04.381 HPE ProLiant DL180 Gen10 Server prior to SPS FW...

8.1CVSS6.8AI score0.00382EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/05/14 12:0 a.m.•2 views

HPESBHF03933 rev.7 - HPE Products using certain Intel Processors, Microarchitectural Data Sampling (MDS) Side Channel Vulnerabilities, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL360 Gen10 Server Firmware prior to 2.04 04/18/2019 HPE ProLiant DL380 Gen10 Server Firmware prior to 2.04 04/18/2019 HPE ProLiant DL160 Gen10 Server Firmware...

6.5CVSS6.6AI score0.01553EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/04/30 12:0 a.m.•2 views

HPESBHF03929 rev.1 - HPE Superdome Flex Server, Local Denial of Service, Disclosure of Information, and Escalation of Privilege

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Elevation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Superdome Flex Server Prior to v2.5.314 25 Mar 2019 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

7.2CVSS6.7AI score0.00395EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/04/05 12:0 a.m.•2 views

HPESBHF03916 rev.1 - HPE Virtual Connect SE 16Gb Fibre Channel Module for Synergy, Local or Remote Unauthorized Elevation of Privilege

Potential Security Impact: Local: Unauthorized Elevation of Privilege; Remote: Unauthorized Elevation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Virtual Connect SE 16Gb Fibre Channel Module for Synergy 5.00.50 firmware - Part of HPE Synergy Custom SPP...

9.8CVSS6.9AI score0.02094EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/03/19 12:0 a.m.•2 views

HPESBST03915 rev.1 - HPE CVAE products, and Hitachi Infrastructure Analytics Advisor(HIAA) using JDK, Multiple Vulnerabilities

Potential Security Impact: Remote: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE earlier than 8.6.2-00 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-2783 | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N | 7.4 |...

8.3CVSS6.4AI score0.15141EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/03/14 12:0 a.m.•2 views

HPESBST03911 rev.1 - HPE Command View AE (CVAE) Products, multiple vulnerabilities

Potential Security Impact: Remote: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP Command View Advanced Edition 1TB 0-500TB Enterprise LTU - 8.6.2-01 or later HP XP Command View Advanced Edition Software - 8.6.2-01 or later HP XP Command View...

8.3CVSS6.5AI score0.07525EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/02/06 12:0 a.m.•2 views

HPESBUX03909 rev.1 - HP-UX Web Server Suite running Apache on HP-UX 11iv3, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Denial of Service DoS, Unauthorized Data Injection, Unauthorized Read Access to Data SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX Apache-based Web Server B.11.31 - httpd prior to B.2.4.18.04 CVSS Scores: | CVE | CVSS Vector | Base Score ...

9.8CVSS6.6AI score0.94999EPSS
Exploits9
HPE Security Bulletins
HPE Security Bulletins
•added 2019/02/04 12:0 a.m.•2 views

HPESBHF03907 rev.1 - HPE Integrated Lights-Out 5 (iLO 5) for Gen10 ProLiant Servers, Remote Cross-Site Scripting in HPE iLO 5 Web User Interface

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers Prior to v1.40 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-7117 |...

7.6CVSS6.7AI score0.01295EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2019/02/04 12:0 a.m.•2 views

HPESBHF03904 rev.1 - HPE Service Pack for ProLiant (SPP) Bundled Software, Local Access Restriction Bypass

Potential Security Impact: Local: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Service Pack for ProLiant Prior to version 2018.09.027 Sep 2018 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-7118 |...

7.8CVSS7AI score0.00497EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/11/29 12:0 a.m.•2 views

HPESBHF03906 rev.1 - HPE Intelligent Management Center (IMC), Remote Buffer Overflow, Code Execution, Denial of Service

Potential Security Impact: Remote: Code Execution, Denial of Service DoS, Remote Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Intelligent Management Center iMC prior to IMC PLAT 7.3 E0605P06 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- |...

10CVSS6.7AI score0.32759EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/10/29 12:0 a.m.•2 views

HPESBHF03894 rev.1 - HPE Integrated Lights-Out 5 (iLO 5) Firmware Updates, Local Bypass of Security Restrictions

Potential Security Impact: Local: Bypass Security Restrictions SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v1.37 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-7113 |...

7.2CVSS6.7AI score0.00744EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/10/25 12:0 a.m.•2 views

HPESBMU03895 rev.1 - HPE Real Time Management System (RTMS), Multiple Remote Security Issues

Potential Security Impact: Remote: Arbitrary File Modification, Execution of Arbitrary Code, Execution of Arbitrary Code With Root Privileges SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Real Time Management System RTMS - 2.0,3.0,3.0.14,3.0.20,3.0.21,3.0.30,3.0.40,3.0.41 -...

9CVSS6.7AI score0.13088EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2018/10/15 12:0 a.m.•2 views

HPESBHF03891 rev.2 - HPE UIoT, Remote Unauthorized Access

Potential Security Impact: Remote: Unauthorized Data Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE IOT + GCP - 1.5,1.4.0, 1.4.1, 1.4.2, 1.2.4.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-7111 |...

5.4CVSS6.2AI score0.05275EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/10/02 12:0 a.m.•2 views

HPESBGN03900 rev.1 - HPE enhanced Internet Usage Manager (eIUM) Remote Unauthorized Disclosure of Information vulnerability and Remote Bypass Security Restrictions

Potential Security Impact: Remote: Bypass Security Restrictions, Unauthorized Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE enhanced Internet Usage Manager eIUM 9.0 FP01 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

7.5CVSS6.7AI score0.07543EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/10/01 12:0 a.m.•2 views

HPESBHF03897 rev.1 - HPE Switches and Routers using OpenSSL, and Intelligent Management Center (iMC) PLAT, Remote Denial of Service

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Intelligent Management Center iMC IMC PLAT 7.3 E0504P04 HPE FlexFabric 12500 Switch Series Comware 5 HPE 9500 Switch Series Comware 5 HPE FlexNetwork 6600 Router Series...

7.5CVSS6.7AI score0.39657EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2018/09/26 12:0 a.m.•2 views

HPESBHF03901 rev.1 - HPE intelligence Management Center (iMC) PLAT, Remote Code Execution

Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Intelligent Management Center iMC - Prior to iMC PLAT 7.3 E0605P04 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-7076 |...

10CVSS7.1AI score0.12305EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/09/26 12:0 a.m.•2 views

HPESBHF03902 rev.1 - HPE Intelligent Management Center (iMC) PLAT, Remote Code Execution

Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Intelligent Management Center iMC - Prior to PLAT 7.3 E0605P04 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-17485 |...

9.8CVSS6.8AI score0.49727EPSS
Exploits8
HPE Security Bulletins
HPE Security Bulletins
•added 2018/09/20 12:0 a.m.•2 views

HPESBST03879 rev.1 - HPE StorageWorks XP7 Automation Director (AutoDir), Local and Remote Authentication Bypass

Potential Security Impact: Local: Authentication Bypass; Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 Automation Director Software 8.5.2-02 to earlier than 8.6.1-00 HP XP7 Automation Director Software 8.5.2-02 to earlier than 8.6.1-00 HPE XP...

5.9CVSS6.6AI score0.02472EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/09/20 12:0 a.m.•2 views

HPESBGN03896 rev.1 - HPE enhanced Internet Usage Manager (eIUM), Remote Arbitrary File Modification

Potential Security Impact: Remote: Arbitrary File Modification SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE enhanced Internet Usage Manager eIUM 9.0 FP01 - Including customer specific versions based on 9.0 FP01 release. CVSS Scores: | CVE | CVSS Vector | Base Score | | --- ...

6.5CVSS6.7AI score0.01003EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/09/20 12:0 a.m.•2 views

HPESBST03882 rev.1 - HPE Command View Advance Edition (CVAE) using JDK, Local and Remote Authentication Bypass

Potential Security Impact: Local: Authentication Bypass; Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE XP7 Command View Advanced Edition Suite all CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-2940 |...

5.9CVSS6.7AI score0.04676EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/09/20 12:0 a.m.•2 views

HPESBST03881 rev.1 - HPE Command View Advanced Edition (CVAE), Local and Remote Access Restriction Bypass

Potential Security Impact: Local: Access Restriction Bypass; Remote: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE XP7 Command View Advanced Edition Suite all CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-3736 |...

6.5CVSS6.6AI score0.13411EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/09/20 12:0 a.m.•2 views

HPESBST03880 rev.1 - HPE XP P9000 Command View Advanced Edition (CVAE), Local and Remote Unauthorized Access to Sensitive Information

Potential Security Impact: Local: Unauthorized Access to Sensitive Information; Remote: Unauthorized Access to Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE XP P9000 Command View Advanced Edition Software Licenses All CVSS Scores: | CVE | CVSS Vector |...

9.8CVSS7AI score0.01378EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2018/09/17 12:0 a.m.•2 views

HPESBGN03889 rev.1 - HPE Device Entitlement Gateway (DEG), Remote SQL Injection and Elevation of Privileges

Potential Security Impact: Remote: SQL Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Device Entitlement Gateway DEG Prior to DEG v3.2.4, DEG v3.3, DEG v3.3.1 with DEG NRBGUI PC1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-7107 |...

8.8CVSS7AI score0.00882EPSS
Exploits0
Total number of security vulnerabilities1147