1146 matches found
HPESBHF03993 rev.1 - HPE Superdome X servers with iLO4, Remote Multiple Vulnerabilities
Potential Security Impact: Remote: Denial of Service DoS, Multiple Vulnerabilities, memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP Superdome X Base Enclosure prior to 8.8.2 HPE Integrity Superdome X Server prior to 8.8.2 HPE Integrity Superdome X with BL920s...
HPESBST03940 rev.1 - HPE MSA 1040, HPE MSA 2040, HPE MSA 2042, HPE MSA 1050, HPE MSA 2050, and HPE MSA 2052 Multiple Remote Access Restriction Bypass
Potential Security Impact: Remote: Session Reuse SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE MSA 1040 SAN Storage GL225P001 and earlier HPE MSA 2040 SAN Storage GL225P001 and earlier HPE MSA 2042 SAN Storage GL225P001 and earlier HPE MSA 1050 SAN Storage VE270R001-01 and...
HPESBST03980 rev.1 - HPE StoreFabric C-series Switches with Cisco Prime Data Center Network Manager (DCNM), Remote Authentication Bypass
Potential Security Impact: Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreFabric Data Center Network Manager Software - Prior to DCNM 11.31 HPE StoreFabric SN8500C Director Switch - Prior to DCNM 11.31 HPE StoreFabric SN8000C Director Switch...
HPESBST03983 rev.1 - HPE Command View Advanced Edition (CVAE), Multiple Vulnerabilities
Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE Earlier than 8.7.1-00 HPE XP7 Command View Advanced Edition Suite Earlier than 8.7.1-00 CVSS Scores: | CVE | CVSS Vector | Base...
HPESBST03977 rev.1 - HPE Command View Advanced Edition (CVAE), Multiple Vulnerabilities
Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE Earlier than 8.7.0-00 HPE XP7 Command View Advanced Edition Suite Earlier than 8.7.0-00 CVSS Scores: | CVE | CVSS Vector | Base...
HPESBGN03975 rev.1 - HPE enhanced Internet Usage Manager (eIUM), Remote Cross Site Scripting
Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE enhanced Internet Usage Manager eIUM 8.3, 9.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-11997 |...
HPESBHF03973 rev.1 - HPE Servers with certain Intel Processors, Local Disclosure of Information, Local Escalation of Privilege
Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen10 Server - Prior to U442.1212062019 HPE ProLiant ML30 Gen10 Server - Prior to 1.8212062019 HPE ProLiant m710x Server Blade -...
HPESBHF03971 rev.6 - HPE ProLiant and Superdome Flex Servers using certain Intel Processors, SMM and TXT, Local Escalation of Privilege
Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4500 System - Prior to v2.22 HPE Apollo 4200 Gen10 Server - Prior to v2.22 HPE Apollo 2000 System - Prior to v2.22 HPE ProLiant BL460c Gen10 Server Blade - Prior to...
HPESBHF03960 rev.1 - HPE Lights Out 100 (LO100) Remote Management for ProLiant G1 - G6 servers, Remote Denial of Service
Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Lights-Out 100 LO100 Remote Management all - denial of service CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-12264 |...
HPESBST03956 rev.2 - HPE SimpliVity OmniStack, Local and Remote Arbitrary Command Execution
Potential Security Impact: Local: Arbitrary Command Execution; Remote: Arbitrary Command Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen9 releases from 3.6.2 to 3.7.9 HPE SimpliVity 380 Gen10 releases from 3.7.1 to 3.7.9 HPE SimpliVity 380 Gen10 G...
HPESBST03951 rev.1 - HPE Command View Advanced EditionCVAE (Virtual Appliance only), Remote Denial of Service
Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP XP7 CVAE 8.5.2-00 to earlier than 8.6.1-02 HP P9000 Command View Advanced Edition Software 1TB 0-30TB LTU 8.5.2-00 to earlier than 8.6.1-...
HPESBST03946 rev.1 - HPE 3PAR StoreServ Management Console (SSMC), Multiple Vulnerabilities
Potential Security Impact: Remote: Authentication Bypass, Cross-Site Scripting XSS, Unauthorized Information Disclosure, Session Reuse, script injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR StoreServ Management and Core Software Media prior to 3.5.0.1 CVSS...
HPESBHF03944 rev.1 - HPE HP2910al-48G switches, local Arbitrary Command Execution
Potential Security Impact: Local: Arbitrary Command Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP 2910-48G al Switch W.15.14.0016 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-5401 | CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L | 6.3...
HPESBHF03937 rev.1 - HPE UIoT Unauthorized Remote Access and Access to Sensitive Information
Potential Security Impact: Remote: Unauthorized Access to Sensitive Information, Unauthorized Data Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE IOT + GCP - 1.6, 1.5, 1.4.0, 1,4,1, 1.4.2, 1.2.4.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...
HPESBMU03923 rev.2 - HPE Smart Update Manager (SUM), Local Unauthorized Elevation of Privilege
Potential Security Impact: Local: Unauthorized Elevation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Smart Update Manager SUM Prior to 8.4 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-11987 |...
HPESBST03928 rev.1 - Command View Advanced Edition (CVAE) Products using JDK, Multiple Vulnerabilities
Potential Security Impact: Local: Authentication Bypass; Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE XP7 Command View Advanced Edition Suite all - vulnerability eliminated after applying updated Oracle JDK 8u181 or later CVSS Scores: | CVE |...
HPESBHF03931 rev.3 - HPE Products using Server Platform Services (SPS), Local Escalation of Privilege Vulnerability
Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL120 Gen10 Server prior to SPS FW 4.00.04.381 HPE ProLiant DL160 Gen10 Server prior to SPS FW 4.00.04.381 HPE ProLiant DL180 Gen10 Server prior to SPS FW...
HPESBHF03933 rev.7 - HPE Products using certain Intel Processors, Microarchitectural Data Sampling (MDS) Side Channel Vulnerabilities, Local Disclosure of Information
Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL360 Gen10 Server Firmware prior to 2.04 04/18/2019 HPE ProLiant DL380 Gen10 Server Firmware prior to 2.04 04/18/2019 HPE ProLiant DL160 Gen10 Server Firmware...
HPESBGN03889 rev.1 - HPE Device Entitlement Gateway (DEG), Remote SQL Injection and Elevation of Privileges
Potential Security Impact: Remote: SQL Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Device Entitlement Gateway DEG Prior to DEG v3.2.4, DEG v3.3, DEG v3.3.1 with DEG NRBGUI PC1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-7107 |...
HPESBNW03878 rev.1 - HPE Comware 5 and Comware 7 Switches and Routers using NTP, Remote Denial of Service
Potential Security Impact: Local: Unauthorized Modification; Remote: Denial of Service DoS, Unauthorized Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Switch Fabric Modules Comware 5, Comware 7 HPE 9500 Switch Series Comware 5 HPE FlexFabric 5830...
HPESBST03870 rev.2 - HPE 3PAR Service Processor (SP), Local Disclosure of Privileged Information
Potential Security Impact: Local: Disclosure of Privileged Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR Service Processors - Prior to SP-5.0.0.0-22913GA - All SP 4.x versions CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-709...
HPESBHF03844 rev.3 - HPE Integrated Lights-Out 4, 5 (iLO 4, 5) iLO Moonshot and Moonshot iLO Chassis Manager, Remote or Local Code Execution
Potential Security Impact: Local: Code Execution; Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v1.30 HPE Integrated Lights-Out 4 iLO 4 - Prior to v2.60 HPE Moonshot Chassis Management...
HPESBUX03818 rev.2 - HP-UX Secure Shell, Multiple Remote Vulnerabilities
Potential Security Impact: Remote: Arbitrary Command Execution, Authentication Bypass, Authorized User SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX 11i Secure Shell Software A.07.30.003 and earlier are impacted CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- |...
HPESBHF03852 rev.1 - HPE Intelligent Management Center (iMC) Wireless Service Manager (WSM) Software, Remote Code Execution
Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE IMC Wireless Services Manager Software iMC WSM 7.3 E0506 - CVE-2017-8990 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-8990 |...
HPESBHF03831 rev.1 - HPE Integrated Lights-Out 2 (iLO 2), Remote Disclosure of Information
Potential Security Impact: Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 2 iLO 2 prior to 2.33 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2015-4000 |...
HPESBNS03834 rev.1 - HPE NonStop Samba, Remote Denial of Service
Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Samba on NonStop L-series: T1201L01 through T1201L01^AAO; J/H-series: T1201H01 through T1201H01^AAP CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...
HPESBMU03833 rev.5 - HPE IceWall SSO dfw, IceWal MCRP, IceWall MFA Proxy, Remote URL Redirection
Potential Security Impact: Remote: URL Redirection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. IceWall SSO Dfw 10.0 RHEL5, RHEL6, RHEL7, HP-UX, Windows and 11.0 RHEL 7 IceWall MCRP 3.0 RHEL 5, RHEL 6, RHEL 7, HP-UX and 4.0 RHEL 7, RHEL 8 IceWall MFA 4.0 Enterprise Edition MFA...
HPESBMU03806 rev.2 - HPE IceWall Products, Multiple Remote Unauthorized Disclosure of Information, Unauthorized Modificiation
Potential Security Impact: Remote: Unauthorized Disclosure of Information, Unauthorized Modification SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. IceWall SSO Dfw 10.0 Patch 8 HP-UX and RHEL, 10.0 Patch 10 HP-UX and RHEL and 11.0 RHEL IceWall MCRP 4.0 RHEL 7 IceWall MFA 4.0...
HPESBHF03797 rev.2 - HPE Integrated Lights-Out 2 (iLO 2), Multiple Remote Vulnerabilities
Potential Security Impact: Remote: Authentication Bypass, Code Execution, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 2 iLO 2 2.29 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-8979 |...
HPESBHF03800 rev.1 - HPE Comware 7 MSR Routers, Remote Denial of Service and Local Elevation or Privilege
Potential Security Impact: Local: Elevation of Privilege; Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Comware v7 CW7 Products Earlier than R0605P20 release - MSR Routers Only CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...
HPESBMU03795 rev.1 - HPE Matrix Operating Environment, Multiple Remote Vulnerabilities
Potential Security Impact: Remote: Indirect Vulnerabilities, Unauthenticated Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP Matrix Operating Environment Software 7.6 LR1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-89...
HPESBHF03788 rev.1 - Hewlett Packard Enterprise Intelligent Management Center flexFileUpload Directory Traversal Remote Code Execution Vulnerability
Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Intelligent Management Center iMC iMC PLAT 7.3 E0504P02 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-8961 |...
HPESBHF03779 rev.1 - HPE Fabric OS using OpenSSH, Denial of Service
Potential Security Impact: Local: Denial of Service DoS; Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. StoreFabric B-series Switches FOS prior to 7.4.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2016-6515 |...
HPESBHF03784 rev.1 - HPE B-Series SAN Network Advisor Software Running WildFly (formerly JBoss Application Server), Remote Disclosure of Information
Potential Security Impact: Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP B-series SAN Network Advisor Software 14.0.2 and prior running on a Windows OS CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2016-0793 |...
HPESBST03780 rev.1 - HPE MSA 1040 and 2040 SAN Storage. Remote Escalation of Privilege, Authentication Bypass
Potential Security Impact: Remote: Authentication Bypass, Elevated Privileges SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP MSA 2040 SAN Storage GL220P008 and earlier HP MSA 1040 SAN Storage GL220P008 and earlier CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | -...
HPESBHF03782 rev.1 - HPE intelligent Management Center (iMC) PLAT, Remote Code Execution
Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Intelligent Management Center iMC iMC Plat 7.3 E0504P2 and earlier CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-12554 |...
HPESBHF03781 rev.1 - HPE intelligent Management Center (iMC) PLAT, Remote Code Execution
Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Intelligent Management Center iMC iMC Plat 7.3 E0504P4 and earlier CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-12561 |...
HPESBHF03705 rev.4 - HPE Integrated Lights-Out 4, 3, 2 and Moonshot Remote Console Administrator (iLO 4 and MRCA) Remote Disclosure of Information
Potential Security Impact: Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Moonshot Remote Console Administrator Prior to 2.50 HP Integrated Lights-Out 4 iLO 4, Prior to 2.53 HP Integrated Lights-Out 3 iLO 3, Firmware for ProLiant G7 Servers Prior...
HPESBHF03769 rev.4 - HPE Integrated Lights-out 4 (iLO 4), Moonshot, and NonStop Systems, Multiple Remote Vulnerabilities
Potential Security Impact: Remote: Authentication Bypass, Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 4 iLO 4 Prior to 2.53 HPE ProLiant m510 Server Cartridge Prior to 2.56 HPE ProLiant m710x Server Blade Prior to 2.56 CLIM BIOS and iLO...
HPESBGN03765 rev.2 - HPE LoadRunner and HPE Performance Center, Remote Disclosure of Information
Potential Security Impact: Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Performance Center - All versions HP LoadRunner - All versions CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2016-2183 |...
HPESBHF03763 rev.1 - HPE Comware 7, IMC, VCX products using OpenSSL, Remote Denial of Service (DoS)
Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Comware v7 CW7 Products See resolution section for impacted versions HP Intelligent Management Center iMC See resolution section for impacted versions VCX Products 9.8.19 CVSS...
HPESBGN03766 rev.2 - HPE Project and Portfolio Management (PPM), Remote Cross-Site Scripting
Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Project and Portfolio Management Center - v9.30, v9.31, v9.32, v9.40 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-8993 |...
HPESBGN03763 rev.1 - HPE SiteScope, Disclosure of Sensitive Information, Bypass Security Restriction, Remote Arbitrary Code Execution
Potential Security Impact: Local: Bypass Security Restrictions, Disclosure of Sensitive Information; Remote: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP SiteScope Monitors Software Series - v11.2x, v11.3x CVSS Scores: | CVE | CVSS Vector | Base Scor...
HPESBUX03747 rev.1 - HP-UX running BIND, Remote Denial of Service
Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX DNS and BIND Software B.11.31 - BIND 9.9.4 prior to C.9.9.4.10.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-3135 |...
HPESBNS03755 rev.2 - HPE NonStop Server using Samba, Multiple Remote Vulnerabilities
Potential Security Impact: Remote: Access Restriction Bypass, Arbitrary Code Execution, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Samba on NonStop L Series: T1201L01 through T1201L01^AAL, H and J Series: T1201H01 through T1201H01^AAM CVSS Scores: | CVE ...
HPESBGN03737 rev.1 - HPE IceWall Federation Agent, Remote Unauthorized Disclosure of Information, Unauthorized Modification
Potential Security Impact: Remote: Unauthorized Disclosure of Information, Unauthorized Modification SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. IceWall Federation Agent Version 3.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2017-8945 |...