Lucene search
K

1147 matches found

HPE Security Bulletins
HPE Security Bulletins
•added 2021/08/31 12:0 a.m.•3 views

HPESBNW04190 rev.3 - HPE ArubaOS, SD-WAN Software and Gateways, Multiple Vulnerabilities

Potential Security Impact: Local: Directory Traversal; Remote: Arbitrary Command Execution, Cross-Site Request Forgery CSRF, Directory Traversal, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba SD-WAN Software and Gateways - Prior to 8.7.0.0-2.3.0.0,...

10CVSS6.1AI score0.03055EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2021/08/25 12:0 a.m.•2 views

HPESBNW04188 rev.2 - Aruba AirWave Management Platform, Multiple Vulnerabilities

Potential Security Impact: Local: Authentication Bypass; Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba AirWave Management Platform - Prior to 8.2.13.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-3156 |...

7.8CVSS7AI score0.99295EPSS
Exploits81
HPE Security Bulletins
HPE Security Bulletins
•added 2021/08/24 12:0 a.m.•2 views

HPESBNW04161 rev.1 - HPE FlexNetwork, FlexFabric, and MSR Switches and Routers, Multiple Local and Remote Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Buffer Overflow; Remote: Cross-Site Scripting XSS, Unauthorized Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE FlexFabric 12900E Switch Series - see table in RESOLUTION for the minimum Comware...

7.8CVSS6.8AI score0.95707EPSS
Exploits16
HPE Security Bulletins
HPE Security Bulletins
•added 2021/08/16 12:0 a.m.•2 views

HPESBHF04187 rev.2 - SGI UV 300/3000 and HPE Integrity MC990 X Servers Using Certain Intel Processors, Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrity MC990 X Server - Prior to firmware bundle 2021.07 SGI UV 300, 300H, 300RL, 30EX - Prior to firmware and diagnostic software 2021.07 SGI UV 3000 - Prior to firmwa...

7.8CVSS6.8AI score0.00347EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/08/09 12:0 a.m.•1 views

HPESBNW04186 rev.2 - HPE Aruba Analytics and Location Engine (ALE), Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Analytics and Location Engine - Prior to 2.1.0.4 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-3156 |...

7.8CVSS7AI score0.99295EPSS
Exploits81
HPE Security Bulletins
HPE Security Bulletins
•added 2021/08/04 12:0 a.m.•1 views

HPESBGN04180 rev.2 - HPE Edgeline Infrastructure Manager, Remote Disclosure of Sensitive Information

Potential Security Impact: Remote: Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Edgeline Infrastructure Management Software - Prior to 1.24 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-26586 |...

7.5CVSS7AI score0.01566EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/22 12:0 a.m.•1 views

HPESBST04142 rev.2 - HPE SAN Switches with Brocade Fabric OS (FOS) Prior to v7.4.2h, Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Unauthorized Write Access to the File System; Remote: Authentication Bypass, Denial of Service DoS, Unauthorized Data Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Brocade 8Gb SAN Switch for HPE BladeSystem...

7.8CVSS6.8AI score0.62906EPSS
Exploits3
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/22 12:0 a.m.•5 views

HPESBST04141 rev.3 - HPE Fibre Channel and SAN Switches with Brocade Fabric OS (FOS) Prior to v8.2.3a, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Authentication Bypass, Denial of Service DoS, Disclosure of Sensitive Information, User Validation Failure SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Brocade 16Gb Fibre Channel SAN Switch for HPE Synergy - Prior to 8.2.3a Brocade 16Gb SAN...

7.8CVSS6.7AI score0.9166EPSS
Exploits4
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/19 12:0 a.m.•1 views

HPESBNW04185 rev.2 - HPE Aruba AOS-CX Switch Series, Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Bypass Security Restrictions, Cross-Site Scripting XSS; Remote: Disclosure of Information, Execution of Arbitrary Commands SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 8400 Switch Series 10.04.xxxx - versions prior to 10.04.3070, 10.05.xx...

9CVSS6.7AI score0.06692EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/16 12:0 a.m.•2 views

HPESBMU04179 rev.1 - HPE IceWall Products Using OpenSSL, Remote Denial of Service

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. IceWall SSO certd 11.0 RHEL 8 and Windows CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-3449 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H | 5...

5.9CVSS6.8AI score0.62906EPSS
Exploits3
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/15 12:0 a.m.•2 views

HPESBNW04175 rev.1 - HPE OfficeConnect Network Switches, Remote Cross-Site Scripting and Arbitrary Code Execution

Potential Security Impact: Remote: Arbitrary Code Execution, Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OfficeConnect 1850 24G 2XGT PoE+ 185W Switch - Prior to PC.01.17 HPE OfficeConnect 1850 24G 2XGT Switch - Prior to PC.01.17 HPE OfficeConnect...

6.9CVSS6.7AI score0.99019EPSS
Exploits13
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/14 12:0 a.m.•2 views

HPESBHF04146 rev.1 - HPE Synergy Composer2 using Integrated Lights-Out 5 (iLO 5), Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Cross-Site Scripting XSS, Buffer Overflow; Remote: Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView - Prior to version 6.2 - Applicable only to HPE Synergy Composer2 appliance CVSS Scores: | CVE ...

7.6CVSS6.3AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/14 12:0 a.m.•1 views

HPESBST04170 rev.1 - HPE Simplivity 380 Gen9 Systems Using Certain Intel Processors, Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen9 - Prior to version 2.90 HPE ProLiant XL170r Gen10 Server - Prior to version 2.90 HPE ProLiant XL190r Gen10 Server - Prior to version 2.90 CVSS Scores: ...

7.8CVSS6.8AI score0.00347EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/14 12:0 a.m.•3 views

HPESBHF04171 rev.1 - HPE Gen10 Systems using certain Intel Processors, Local Arbitrary Code Execution

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen10 Server - Prior to ROM v2.30 HPE ProLiant ML30 Gen10 Server - Prior to ROM v2.30 HPE Apollo 4200 Gen10 Server - Prior to ROM v2.50 HPE ProLiant BL460c...

7.5CVSS6.8AI score0.00327EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/14 12:0 a.m.•2 views

HPESBST04169 rev.1 - HPE Simplivity 380 Gen10 Systems Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen10 - Prior to version 2.50 HPE SimpliVity 380 Gen10 G - Prior to version 2.50 HPE SimpliVity 2600 Gen10...

7.8CVSS6.6AI score0.00402EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/12 12:0 a.m.•1 views

HPESBST04178 rev.1 - HPE SimpliVity Systems using VMware, Remote Code Execution

Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 2600 Gen10 - All active versions HPE SimpliVity 2600 - All active versions HPE SimpliVity 325 - All active versions HPE SimpliVity 380 Gen10 - All active versions HPE...

10CVSS6.9AI score0.99999EPSS
Exploits13
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/08 12:0 a.m.•3 views

HPESBHF04182 rev.1 - HPE Superdome X Servers, Remote Denial of Service (DoS)

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP Superdome X Base Enclosure - Prior to Bundle 8.8.50 HPE Integrity Superdome X Server - Prior to Bundle 8.8.50 HPE Integrity Superdome X with BL920s Blades - Prior to Bundle...

7.5CVSS6.7AI score0.07471EPSS
Exploits5
HPE Security Bulletins
HPE Security Bulletins
•added 2021/07/07 12:0 a.m.•2 views

HPESBNW04181 rev.2 - HPE Aruba ClearPass Policy Manager, Multiple Vulnerabilities

Potential Security Impact: Local: Escalation of Privilege; Remote: Arbitrary Command Execution, Authentication Bypass, Denial of Service DoS, SQL Injection, Insecure Deserialization SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Policy Manager Platform - Prior to...

9CVSS6.7AI score0.99295EPSS
Exploits82
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/30 12:0 a.m.•3 views

HPESBHF04148 rev.1 - HPE Integrity Integrated Lights-Out 4 (iLO 4) for Superdome X Servers, Remote Memory Corruption

Potential Security Impact: Remote: memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP Superdome X Base Enclosure - Prior to Bundle 8.8.50 HPE Integrity Superdome X Server - Prior to Bundle 8.8.50 HPE Integrity Superdome X with BL920s Blades - Prior to Bundle 8.8....

7.5CVSS7AI score0.01464EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/16 12:0 a.m.•3 views

HPESBNS04172 rev.2 - HPE BackBox Software, Remote Unauthorized Access

Potential Security Impact: Remote: Unauthorized Access, Unauthorized Access to Data, Unauthorized Data Modification SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE BackBox Software T0954 T0954V04^AAO, T0954V04^AAQ, T0954V04^AAR and T0954V04^AAS CVSS Scores: | CVE | CVSS Vector...

8.1CVSS6.1AI score0.00905EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/09 12:0 a.m.•3 views

HPESBST04167 rev.1 - HPE StoreEasy Gen10 Systems Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Storage File Controller Prior to version 2.50 HPE StoreEasy 1X60 Storage Prior to version 2.50 HPE StoreEasy 1450 Storage...

7.8CVSS6.6AI score0.00402EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/09 12:0 a.m.•3 views

HPESBST04168 rev.1 - HPE StoreEasy Gen9 Systems Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEasy 1X30 Storage Prior to version 2.90 HPE StoreEasy 1X40 Storage Prior to version 2.90 HPE StoreEasy 1X50 Storage...

7.8CVSS6.8AI score0.00347EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•3 views

HPESBUX04160 rev.2 - HP-UX OpenSSL, Multiple Vulnerabilities

Potential Security Impact: Local: Unauthorized Access to Diagnostic Data, Unauthorized Arbitrary File Creation, Unqualified Configuration Change; Remote: Unauthorized Access to Diagnostic Data, Unauthorized Arbitrary File Creation SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed...

4.7CVSS6.6AI score0.03838EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•3 views

HPESBHF04158 rev.1 - HPE Synergy Gen10 Servers Using Certain Intel Processor, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy 480 Gen10 Compute Module - Prior to version 2.50 HPE Synergy 660 Gen10 Compute Module - Prior to version 2.50 CVS...

7.8CVSS6.6AI score0.00402EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•3 views

HPESBHF04155 rev.1 - HPE Gen10 Servers Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen10 Server - Prior to version 2.3.0, and SPS v 05.01.04.303 HPE ProLiant ML30 Gen10 Server - Prior to...

7.5CVSS6.6AI score0.00402EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•3 views

HPESBHF04162 rev.1 - HPE OneView Global Dashboard Release 2.31, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Privileged Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView Global Dashboard - only 2.31 - only version 2.31 is impacted. The issue is resolved in 2.32. CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | -...

5.5CVSS6.2AI score0.00232EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•3 views

HPESBHF04159 rev.1 - HPE Synergy Gen9 Servers Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy 480 Gen9 Compute Module - Prior to version 2.90 HPE Synergy 620 Gen9 Compute Module - Prior to version 2.90 HPE Synergy 660 Gen9 Compute Module - Prior to version...

7.8CVSS6.8AI score0.00347EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•4 views

HPESBHF04164 rev.1 - HPE Edgeline m750 Gen10 Servers Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m750 Server Blade - Prior to version H09 1.42 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-12357 |...

7.5CVSS6.6AI score0.00402EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•3 views

HPESBHF04165 rev.1 - HPE Edgeline m710x Gen9 Servers Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m710x Server Blade - Prior to version H07 1.90 HPE ProLiant m710x-L Server Blade - Prior to version H07 1.90 CVSS Scores: | CVE | CVSS...

7.5CVSS6.6AI score0.00383EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•3 views

HPESBHF04152 rev.1 - HPE Gen9 Servers Using Certain Intel Processors, Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant XL450 Gen9 Server - Prior to version 2.90 HPE ProLiant XL270d Gen9 Special Server - Prior to version 2.90 HPE Apollo 4200 Gen9 Server - Prior to version 2.90 HPE...

7.8CVSS6.8AI score0.00347EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•3 views

HPESBHF04156 rev.1 - HPE Gen9 Servers Using Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant ML30 Gen9 Server - Prior to version 3.00 HPE ProLiant DL20 Gen9 Server - Prior to version 3.00 CVSS Scores: | CVE | CVSS Vector | Base...

7.5CVSS6.6AI score0.00383EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•3 views

HPESBHF04157 rev.1 - HPE Edgeline Gen10 Servers Using Certain Intel Processor, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant e910 Server Blade - Prior to version H08 1.88 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- ...

7.8CVSS6.6AI score0.00402EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•3 views

HPESBHF04163 rev.1 - HPE Edgeline m510 Gen9 Server Using Certain Intel Processors, Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m510 Server Cartridge - Prior to version H05 1.86 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-12357 |...

7.8CVSS6.8AI score0.00347EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/08 12:0 a.m.•2 views

HPESBHF04150 rev.1 - HPE Gen10 Servers with Certain Intel Processors, Multiple Local Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL360 Gen10 Server - Prior to version 2.50 HPE ProLiant DL380 Gen10 Server - Prior to version 2.50 HPE ProLiant...

7.8CVSS6.6AI score0.00402EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/02 12:0 a.m.•5 views

HPESBST04140 rev.3 - HPE Fibre Channel and SAN Switches with Brocade Fabric OS (FOS) Prior to v9.0.1b, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Authentication Bypass, Denial of Service DoS, User Validation Failure SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Brocade 32Gb Fibre Channel SAN Switch for HPE Synergy - Prior to 9.0.1b HPE B-series SN6700B Fibre Channel Switch - Prior to...

7.8CVSS6.8AI score0.9166EPSS
Exploits4
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/01 12:0 a.m.•3 views

HPESBUX04166 rev.2 - HPE HP-UX System Management Homepage, Multiple Remote Vulnerabilities

Potential Security Impact: Local: Authentication Bypass; Remote: Arbitrary Code Execution, Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX System Management Software A.3.2.21.03 or earlier HPE System Management Homepage A.3.2.21.03 or earlier CVSS Scores: | CV...

7.8CVSS6.6AI score0.03873EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/06/01 12:0 a.m.•1 views

HPESBHF04143 rev.2 - HPE Integrated Lights-Out 4 (iLO 4) for Moonshot, Edgeline Cartridges and Blades, HPE Moonshot Chassis Management firmware, Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant m510 Server Cartridge - Prior to version 2.64 for Moonshot/Edgeline HPE ProLiant m710x Server...

7.6CVSS6.3AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/27 12:0 a.m.•3 views

HPESBGN04151 rev.1 - HPE OneView for VMware vCenter, Remote Cross-Site Scripting

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView for VMware vCenter with Operations Manager and Log Insight - Prior to 10.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-26584 |...

6.1CVSS6.4AI score0.0067EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/25 12:0 a.m.•3 views

HPESBST04138 rev.1 - HPE 3Par and Primera StoreServ Management Console (SSMC) using sudo, Local Buffer Overflow

Potential Security Impact: Local: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR StoreServ Management and Core Software Media SSMC prior to 3.8 are vulnerable CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-3156 |...

7.8CVSS6.8AI score0.99295EPSS
Exploits81
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/20 12:0 a.m.•3 views

HPESBHF04149 rev.1 - HPE StoreOnce Systems using HPE Integrated Lights-Out 5 (iLO 5), Multiple Remote and Local vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreOnce 5650 - Prior to 4.3.0 HPE StoreOnce 5200 - Prior to 4.3.0 HPE StoreOnce 3640 - Prior to 4.3.0...

7.6CVSS6.3AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/20 12:0 a.m.•4 views

HPESBHF04144 rev.1 - HPE StoreOnce Systems using HPE Integrated Lights-Out 4 (iLO 4), Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreOnce 2700 8TB Backup - Prior to 3.18.20 HPE StoreOnce 2900 24TB Backup - Prior to 3.18.20 HPE...

7.6CVSS6.2AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/18 12:0 a.m.•2 views

HPESBHF04133 rev.2 - HPE ProLiant Servers, Apollo Products, Moonshot and Edgeline Blades, and Storage Products with Integrated Lights-Out 5 (iLO 5), Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to version 2.44 HPE 3PAR Service Processor ...

7.6CVSS6.1AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/18 12:0 a.m.•3 views

HPESBHF04130 rev.2 - HPE Synergy Systems with Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4), Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Synergy 480 Gen9 Compute Module - Prior to HPE Synergy Service Pack SSP 2021.05.01 HPE Synergy 480 Gen1...

7.6CVSS6.3AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/18 12:0 a.m.•1 views

HPESBHF04134 rev.1 - HPE SimpliVity using HPE Integrated Lights-Out 5 (iLO 5) and HPE Integrated Lights-Out 4 (iLO 4), Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers -Prior to version 2.44 HPE Integrated Lights-Out 4...

7.6CVSS6.3AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/18 12:0 a.m.•1 views

HPESBHF04147 rev.1 - HPE Synergy Gen10/Gen10 Plus, GRUB2 Secure Boot Vulnerability, Local Execution of Arbitrary Code

Potential Security Impact: Local: Execution of Arbitrary Code SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Intelligent Provisioning - Prior to IP 3.62 for Gen10/Gen10 Plus, prior to IP 2.84 for Gen9 Scripting Toolkit for Linux - Prior to Scripting Toolkit for Linux 11.5121 Apr...

8.2CVSS6.8AI score0.01152EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/18 12:0 a.m.•3 views

HPESBHF04121 rev.1 - HPE ProLiant Servers, Apollo Products, and Storage Products with Integrated Lights-Out 4 (iLO 4), Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 4 iLO 4 - Prior to version 2.78 HPE ProLiant BL460c Gen9 Server Blade - Prior to...

7.6CVSS6.3AI score0.0069EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/14 12:0 a.m.•3 views

HPESBST04137 rev.1 - HPE Fibre Channel and SAN Switches with Brocade Fabric OS (FOS) Prior to v8.2.3, Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Unauthorized Write Access to the File System; Remote: Denial of Service DoS, Unauthorized Data Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Brocade 16Gb Fibre Channel SAN Switch for HPE Synergy - Prior to 8.2...

7.8CVSS6.8AI score0.62906EPSS
Exploits3
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/14 12:0 a.m.•4 views

HPESBST04139 rev.1 - HPE Fibre Channel and SAN Switches with Brocade Fabric OS (FOS) Prior to v9.0.1a, Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Unauthorized Write Access to the File System; Remote: Authentication Bypass, Denial of Service DoS, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Brocade 32Gb Fibre Channel SAN Switch...

7.8CVSS6.8AI score0.99019EPSS
Exploits16
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/14 12:0 a.m.•4 views

HPESBST04135 rev.1 - HPE B-Series SANnav Management Portal, Multiple Remote Vulnerabilities

Potential Security Impact: Remote: Denial of Service DoS, Disclosure of Information, Disclosure of Sensitive Information, Unauthorized Access to Files, Unauthorized Information Disclosure, Server-Side Request Forgery SSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SANnav...

9.8CVSS6.7AI score0.99019EPSS
Exploits25
HPE Security Bulletins
HPE Security Bulletins
•added 2021/05/12 12:0 a.m.•2 views

HPESBNW04145 rev.4 - Aruba Instant Access Points, ArubaOS Access Points when Managed by Mobiltity Controllers, Aruba Instant On, Aruba UXI Sensors, 802.11 Frame Aggregation and Fragmentation Vulnerabilities

Potential Security Impact: Remote: Disclosure of Sensitive Information, Unauthorized Data Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 1XX Series Campus Access Points - Prior to 6.5.4.19, 6.5.4.20, 8.3.0.15, 8.3.0.16, 8.5.0.12, 8.5.0.13, 8.6.0.8, 8.6.0.9, 8.7.1....

6.5CVSS6.7AI score0.07604EPSS
Exploits2
Total number of security vulnerabilities1147