Lucene search
K

1145 matches found

HPE Security Bulletins
HPE Security Bulletins
added 2025/08/01 12:0 a.m.1 views

HPESBGN04904 rev.3 - HPE Private Cloud AI, Multiple Vulnerabilities

Potential Security Impact: Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Private Cloud AI - Prior to v1.5 - Several vulnerabilities have been identified within the HPE Private Cloud AI PCAI platform versions 1.2, 1.3, and 1.4.0, specifically ...

9.8CVSS7.1AI score0.50446EPSS
Exploits10
HPE Security Bulletins
HPE Security Bulletins
added 2025/08/01 12:0 a.m.3 views

HPESBNW04906 rev.1 - HPE Telco IP Mediation, Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Stack Overflow; Remote: Code Execution, Denial of Service DoS, XML External Entity XXE, Stack Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco IP Mediation - Prior to 8.5.1-0B CVSS Scores: | CVE | CVSS Vect...

10CVSS6.8AI score0.23932EPSS
Exploits4
HPE Security Bulletins
HPE Security Bulletins
added 2025/08/01 12:0 a.m.2 views

HPESBNW04907 rev.1 - HPE Telco Service Orchestrator Software, Remote Command Execution Vulnerability

Potential Security Impact: Remote: Arbitrary Command Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Service Orchestrator - Prior to v5.3.4 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-7783 |...

9.4CVSS6.5AI score0.01735EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/31 12:0 a.m.3 views

HPESBUX04909 rev.1 - HP-UX 11i v3 Tomcat-based Servlet Engine, Multiple Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Authentication Bypass, Bypass Security Restrictions, Denial of Service DoS, Disclosure of Information; Remote: Arbitrary Code Execution, Authentication Bypass, Bypass Security Restrictions, Code Execution, Denial of Service DoS, Disclosu...

10CVSS6.8AI score0.99945EPSS
Exploits70
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/30 12:0 a.m.2 views

HPESBNW04887 rev.1 - HPE Telco Service Activator, Protection Mechanism Failure

Potential Security Impact: Local: Input Validation; Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Service Activator 10.3.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2020-36843 |...

4.3CVSS6.3AI score0.00192EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/30 12:0 a.m.1 views

HPESBNW04905 rev. 1 - HPE Telco Intelligent Assurance, Improper Access Control in Java Dependency

Potential Security Impact: Local: Gain Unauthorized Access; Remote: Gain Unauthorized Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Intelligent Assurance FAS and PDO 4.2.9 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-48734 |...

8.8CVSS6.6AI score0.01548EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/24 12:0 a.m.2 views

HPESBNW04901 rev.1 - HPE Telco Service Orchestrator, Remote Denial of Service (DoS) Vulnerability

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Service Orchestrator - Prior to v5.0.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-48367 |...

7.5CVSS6.3AI score0.00733EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/24 12:0 a.m.2 views

HPESBNW04902 rev.1 - HPE Telco Service Orchestrator, Exposure of Sensitive Information to an Unauthorized Actor Vulnerability

Potential Security Impact: Remote: Gain Unauthorized Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Service Orchestrator - Prior to v4.2.1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-38153 |...

5.9CVSS6.7AI score0.0582EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/23 12:0 a.m.1 views

HPESBUX04903 rev.1 - HP-UX Secure Shell daemon (sshd), Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary Code Execution, Bypass Security Restrictions, Code Execution, Compromise of System Integrity SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX 11i Secure Shell Software - Prior to A.09.30.010 CVSS Scores: | CVE | CVSS Vector | Base...

6.8CVSS6.7AI score0.06997EPSS
Exploits4
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/21 12:0 a.m.2 views

HPESBNW04891 rev. 2 - HPE Telco Network Function Virtual Orchestrator, Multiple Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Network Function Virtualization Orchestrator 7.3.0 and below CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-27152 |...

9.8CVSS6.8AI score0.66933EPSS
Exploits7
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/16 12:0 a.m.2 views

HPESBGN04877 rev.1 - HPE AutoPass License Server (APLS), Multiple Vulnerabilities

Potential Security Impact: Remote: Authentication Bypass, Code Execution, Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE AutoPass License Server - prior to 9.18 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-37105 |...

9.8CVSS7AI score0.00602EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/16 12:0 a.m.2 views

HPESBNW04900 rev.1 - HPE Telco Service Orchestrator Software, Remote Denial of Service (DoS)

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Service Orchestrator - Prior to v4.2.4 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2022-34917 |...

7.5CVSS6.6AI score0.0125EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/16 12:0 a.m.2 views

HPESBNW04875 rev.1 - HPE Telco Service Orchestrator Software, Authenticated SQL Injection

Potential Security Impact: Remote: SQL Injection, Unauthorized Access to Application Database SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Service Orchestrator - Prior to v5.2.1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-37104 |...

7.1CVSS6.1AI score0.00196EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/16 12:0 a.m.4 views

HPESBCR04898 rev.1 - Certain HPE Cray XD Servers Using Certain TPM 2.0, Local Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cray XD670 - Prior to TPM Firmware v7.86 June 13, 2025 HPE Cray XD675 - Prior to TPM Firmware v15.24 June 13, 2025 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --...

6.6CVSS6.9AI score0.00199EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.2 views

HPESBHF04881 rev.1 - HPE SimpliVity Servers Using Intel Server Platform Services (SPS) Firmware, INTEL-SA-01209 - Intel PTT and SPS Advisory, Local Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen10 - Prior to HPE SimpliVity Gen10 Support Pack SVTSPGen10 v20250630 HPE SimpliVity 380 Gen10 G - Prior to HPE SimpliVity Gen10 Support Pack SVTSPGen10...

6.6CVSS6.9AI score0.00199EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.1 views

HPESBHF04785 rev.1 - Certain HPE SimpliVity AMD Servers Using Certain AMD EPYC Processors, AMD-SB-3019: AMD SEV Confidential Computing Vulnerability

Potential Security Impact: Local: Unauthorized Data Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen10 Plus - Prior to HPE SimpliVity Gen10 Support Pack SVTSP v20250630 HPE SimpliVity 325 Gen10 - Prior to HPE SimpliVity Gen10 Support Pack SVTSP v202506...

7.2CVSS6.9AI score0.00523EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.2 views

HPESBHF04865 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processor BIOS, INTEL-SA-01247, 2025.2 IPU - Intel Processor Indirect Branch Predictor Advisory, Local Disclosure of Information Vulnerability

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen10 - Prior to HPE SimpliVity Support Pack Gen10 SVTSPGen10 v2025-0630 HPE SimpliVity 380 Gen10 G - Prior to HPE SimpliVity Support Pack Gen10 SVTSPGen1...

5.7CVSS6.8AI score0.00253EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.2 views

HPESBHF04897 rev.1 - Certain HPE SimpliVity Servers Using Certain AMD EPYC Processors, AMD-SB-7039: Unauthorized Access to AMD Secure Processor’s Crypto-Co-Processor, Local Unauthorized Access Vulnerability

Potential Security Impact: Local: Unauthorized Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen10 Plus - Prior to HPE SimpliVity Gen10 Support Pack SVTSPGen10 v20241129 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2023-2059...

7.9CVSS6.1AI score0.00157EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.2 views

HPESBHF04813 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processor BIOS, INTEL-SA-01166, 2024.4 IPU, Intel Processor Advisory, Local Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen11 - Prior to SimpliVity Support Pack Gen11 SVTSPGen11 v20250630 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2024-31068 |...

5.6CVSS6.5AI score0.0022EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.2 views

HPESBHF04815 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processor BIOS, INTEL-SA-01194, UPLR3 Intel Data Streaming Accelerator Advisory, Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen11 - Prior to HPE Simplivity Support Pack Gen11 SVTSPGen11 v20250630 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2024-37020 |...

4.8CVSS6.1AI score0.00232EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.1 views

HPESBHF04812 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processor BIOS, INTEL-SA-01213, 2025.1 IPU - Intel SGX Advisory, Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen11 - Prior to HPE SimpliVity Support Pack Gen11 SVTSPGen11 v20250630 HPE SimpliVity 380 Gen10 Plus - Prior to HPE SimpliVity Support Pack Gen10 SVTSPGen10...

6.8CVSS6.6AI score0.00244EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.1 views

HPESBHF04829 rev.1 - Certain HPE SimpliVity Servers Using Certain AMD EPYC Processors, AMD-SB-7033: AMD CPU Microcode Signature Verification, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen10 - Prior to HPE SimpliVity Gen10 Support Pack SVTSPGen10 v20250630 HPE SimpliVity 325 Gen10 Plus - Prior to HPE SimpliVity Gen10 Support Pack...

6.4CVSS6.7AI score0.00097EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.2 views

HPESBHF04814 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processors, INTEL-SA-01139, 2025.1 IPU - UEFI Firmware Advisory, Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen10 - Prior to HPE SimpliVity Support Pack Gen10 SVTSPGen10 v20250630 HPE SimpliVity 380 Gen10 Plus - Prior to HPE SimpliVity...

6.8CVSS6.5AI score0.00247EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.3 views

HPESBHF04816 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processors, INTEL-SA-01153, Local Disclosure of Information Vulnerability

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen10 Plus - Prior to HPE SimpliVity Support Pack Gen10 SVTSPGen10 v20250630 HPE SimpliVity 170r Gen10 Server - Prior to HPE SimpliVity Support Pack Gen10...

5.7CVSS6.7AI score0.00371EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.2 views

HPESBHF04896 rev.1 - Certain HPE SimpliVity Servers Using Certain AMD EPYC Processors, AMD-SB-7029: AMD Transient Scheduler Attacks, Multiple Vulnerabilities

Potential Security Impact: Local: Disclosure of Privileged Information, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen10 Plus - Prior to Gen10 Support Pack SVTSPGen10 v20250630 HPE SimpliVity 325 Gen11 - Prior to Gen11...

5.6CVSS6.7AI score0.00425EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/10 12:0 a.m.3 views

HPESBHF04798 rev.1 - Certain HPE SimpliVity Servers using AMD 3rd Generation and 4th Generation EPYC Processors, AMD-SB-3015, Undermining Integrity Features of SEV-SNP with Memory Aliasing (BadRAM)

Potential Security Impact: Local: Compromise of System Integrity SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen10 Plus - Prior to HPE SimpliVity Gen10 Support Pack SVTSPGen10 v2025-0630 HPE SimpliVity 325 Gen11 - Prior to HPE SimpliVity Gen11 Support Pack...

5.3CVSS6.8AI score0.00222EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/09 12:0 a.m.2 views

HPESBHF04871 rev.1 - HPE Superdome Flex and Flex 280 Servers using Certain Intel Processor BIOS, INTEL-SA-01139, 2025.1 IPU - UEFI Firmware Advisory, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Superdome Flex Server - Prior to v4.10.18 HPE Superdome Flex 280 Server - Prior to v2.00.12 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

6.8CVSS6.2AI score0.00247EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/09 12:0 a.m.1 views

HPESBHF04869 rev.1 - HPE Compute Scale-up Server 3200 Platform Servers using Certain Intel Processors, INTEL-SA-01244, 2025.2 IPU, Intel Processor Advisory, Local Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Compute Scale-up Server 3200 - Prior to v1.60.88 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-20054 |...

6.8CVSS6.7AI score0.00142EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/09 12:0 a.m.2 views

HPESBHF04866 rev.1 - HPE Superdome Flex and Flex 280 Servers Using Certain Intel Processor BIOS, INTEL-SA-01153, 2025.1 IPU, Intel Processor Advisory, Local Disclosure of Information Vulnerability

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Superdome Flex 280 Server - Prior to v2.00.12 HPE Superdome Flex Server - Prior to v4.10.18 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

5.7CVSS6.8AI score0.00371EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/09 12:0 a.m.1 views

HPESBHF04868 rev.1 - HPE Superdome Flex, Flex 280 and Compute Scale-up Server 3200 Platform Servers Using Intel Processor BIOS, INTEL-SA-01247, 2025.2 IPU - Intel Processor Indirect Branch Predictor Advisory, Local Disclosure of Information Vulnerability

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Compute Scale-up Server 3200 - Prior to v1.60.88 HPE Superdome Flex 280 Server - Prior to v2.00.12 HPE Superdome Flex Server - Prior to v4.10.18 CVSS Scores: | CVE | CVS...

5.7CVSS6.8AI score0.00253EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/08 12:0 a.m.2 views

HPESBNW04894 rev.1 - HPE Networking Instant On Access Points, Multiple Vulnerabilities

Potential Security Impact: Remote: Access Restriction Bypass, Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Networking Instant On Access Points AP11 Please refer to Affected Products sections within Vulnerability Summary of Security Bulletin for more...

9.8CVSS7.1AI score0.01474EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/08 12:0 a.m.2 views

HPESBHF04889 rev.1 - Certain HPE ProLiant AMD DL/XL Servers Using Certain AMD EPYC Processors, AMD-SB-7029: AMD Transient Scheduler Attacks, Multiple Vulnerabilities

Potential Security Impact: Local: Disclosure of Privileged Information, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL145 Gen11 - Prior to 1.4001-17-2025 HPE ProLiant DL325 Gen11 Server - Prior to 2.3001-17-2025 HPE ProLiant DL3...

5.6CVSS6.7AI score0.00425EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/08 12:0 a.m.2 views

HPESBCR04892 rev.1 - Certain HPE ProLiant Cray Servers Using Certain AMD EPYC Processors, AMD-SB-7029: AMD Transient Scheduler Attacks, Multiple Vulnerabilities

Potential Security Impact: Local: Disclosure of Privileged Information, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cray EX235a Accelerator Blade - Prior to 2.1.0 in HFP 25.2.1 HPE Cray EX235n Server - Prior to 1.5.3 in HFP 25.5.0 HPE Cr...

5.6CVSS6.7AI score0.00425EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/08 12:0 a.m.3 views

HPESBST04890 rev.2 - HPE SANnav Management Portal and Fabric OS, Multiple Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Brocade 32Gb Fibre Channel SAN Switch for HPE Synergy - 9.1.0 through 9.2.2 HPE B-series SN3600B Fibre Channel Switch - 9.1.0 through 9.2.2...

10CVSS6.8AI score0.89914EPSS
Exploits14
HPE Security Bulletins
HPE Security Bulletins
added 2025/07/02 12:0 a.m.1 views

HPESBNW04886 rev.1 - HPE Telco Service Orchestrator Software, Server-Side Request Forgery (SSRF) Vulnerability

Potential Security Impact: Remote: Server-Side Request Forgery SSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Service Orchestrator - Prior to v5.3.3 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-27817 |...

7.5CVSS6.9AI score0.62368EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
added 2025/06/24 12:0 a.m.2 views

HPESBGN04876 rev.2 - HPE OneView for VMware vCenter (OV4VC) and Compute Ops Management plug-in for VMware vCenter (COM4VC), Local Elevation of of Privilege

Potential Security Impact: Local: Elevation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView for VMware vCenter with Operations Manager and Log Insight - All versions prior to v11.7 HPE Compute Ops Management - All versions prior to v1.4 CVSS Scores: | CVE ...

8.7CVSS7AI score0.00255EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/06/23 12:0 a.m.2 views

HPESBNW04885 Rev. 1: HPE Telco Unified OSS Console Assurance Monitoring Service (UOCAM) Using Apache, Remote Elevated Privileges

Potential Security Impact: Local: Input Validation; Remote: Elevated Privileges SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Unified OSS Console prior to 3.1.16 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-27427 |...

4.3CVSS6.1AI score0.0058EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/06/10 12:0 a.m.1 views

HPESBNW04883 rev.1 - HPE Aruba Networking Private 5G Core, Exposure of Sensitive Information to Unauthorized Users

Potential Security Impact: Remote: Arbitrary File Download, Unauthorized Access to Files SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Aruba Networking Private 5G Core Any versions between 1.24.1.0 and 1.25.1.0 and below - HPE recommends to deploy the product so that the API...

7.7CVSS6.9AI score0.00406EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/06/10 12:0 a.m.3 views

HPESBHF04882 rev.1 - Certain HPE ProLiant AMD DL/XL Servers Using Certain AMD EPYC Processors, AMD-SB-7039: Unauthorized Access to AMD Secure Processor’s Crypto-Co-Processor, Local Unauthorized Access Vulnerability

Potential Security Impact: Local: Unauthorized Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL325 Gen10 Plus server - Prior to v3.2008-07-2024 HPE ProLiant DL325 Gen10 Plus v2 server - Prior to v3.2008-07-2024 HPE ProLiant DL345 Gen10 Plus server - Prior to...

7.9CVSS6.1AI score0.00157EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/06/10 12:0 a.m.3 views

HPESBST04879 rev.2 - HPE SAN Switches with Brocade Fabric OS (FOS), Multiple Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Denial of Service DoS, Directory Traversal SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE B-series SN6750B Fibre Channel Switch - Prior to 9.2.1c and 9.2.2a HPE SN8700B 4-slot SAN Director Switch - Prior to 9.2.1c an...

7.8CVSS6.7AI score0.01016EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/06/10 12:0 a.m.2 views

HPESBHF04874 rev.1 - HPE DL/ML, MicroServer, Synergy, Apollo, XL and Edgeline Servers Using Intel Server Platform Services (SPS) Firmware, INTEL-SA-01209 - Intel PTT and SPS Advisory, Local Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL110 Gen10 Plus Telco server - Prior to SPSE504.04.04.702 HPE ProLiant DL360 Gen10 Plus server - Prior to SPSE504.04.04.702 HPE ProLiant DL380 Gen10 Plus server -...

6.6CVSS6.9AI score0.00199EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/06/10 12:0 a.m.3 views

HPESBHF04880 rev.1 - HPE StoreEasy Servers Using Intel Server Platform Services (SPS) Firmware, INTEL-SA-01209 - Intel PTT and SPS Advisory, Local Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Storage File Controller - Prior to SPSE504.01.05.105 U32 ROM Family HPE Storage Performance File Controller - Prior to SPSE504.01.05.105 U32 ROM Family HPE StoreEasy 1460...

6.6CVSS6.9AI score0.00199EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/06/04 12:0 a.m.2 views

HPESBGN04878 rev.1 - HPE Insight Remote Support (IRS), Multiple Vulnerabilities

Potential Security Impact: Remote: Code Execution, Directory Traversal, Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Insight Remote Support - prior to 7.15.0.646 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-37097 |...

9.8CVSS7AI score0.32516EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
added 2025/06/03 12:0 a.m.5 views

HPESBNW04872 rev.1 - HPE Telco Service Orchestrator software, Multiple Vulnerabilities

Potential Security Impact: Remote: Access Restriction Bypass, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Service Orchestrator - Prior to v5.3.2 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-31650 |...

9.8CVSS6.8AI score0.66933EPSS
Exploits6
HPE Security Bulletins
HPE Security Bulletins
added 2025/06/02 12:0 a.m.2 views

HPESBST04847 rev.2 - HPE StoreOnce Software, Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary File Deletion, Authentication Bypass, Code Execution, Directory Traversal, Disclosure of Information, Server-Side Request Forgery SSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreOnce G4/4+ Systems - Prior to v4.3.11 CVSS...

9.8CVSS6.7AI score0.01337EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/05/30 12:0 a.m.2 views

HPESBGN04853 rev.1 - HPE OneView, Multiple Local and Remote Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, script injection; Remote: Code Execution, Disclosure of Information, Server-Side Request Forgery SSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView - All versions prior to v10.00 CVSS Scores: | CVE | CVSS Vecto...

9.8CVSS6.8AI score0.99957EPSS
Exploits17
HPE Security Bulletins
HPE Security Bulletins
added 2025/05/29 12:0 a.m.2 views

HPESBNW04870 rev.1 - HPE Telco Service Orchestrator software, Remote Cross-Site Scripting (XSS) Vulnerability

Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Telco Service Orchestrator - Prior to v5.0.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-1647 |...

5.6CVSS6.3AI score0.00272EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/05/22 12:0 a.m.3 views

HPESBNS04859 rev.1 - HPE NonStop servers, Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS; Remote: Code Execution, Denial of Service DoS, Disclosure of Information, Disclosure of Sensitive Information, Buffer Overflow, script injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. NonStop SSL T0910 Multiple -...

9.8CVSS6.9AI score0.87816EPSS
Exploits10
HPE Security Bulletins
HPE Security Bulletins
added 2025/05/13 12:0 a.m.1 views

HPESBHF04862 rev.1 - Certain HPE StoreEasy Servers Using Certain Intel Processors, INTEL-SA-01244, 2025.2 IPU, Intel Processor Advisory, Local Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEasy 1470 Performance - Prior to v2.5004-22-2025 HPE StoreEasy 1470 Storage - Prior to v2.5004-22-2025 HPE StoreEasy 1570 Performance - Prior to v2.5004-22-2025 HPE...

6.8CVSS6.7AI score0.00142EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2025/05/13 12:0 a.m.2 views

HPESBHF04858 rev.1 - Certain HPE ProLiant DL/ML, Alletra, Synergy, and Edgeline Servers Using Certain Intel Processors, INTEL-SA-01244, 2025.2 IPU, Intel Processor Advisory, Local Denial of Service Vulnerability

Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL110 Gen11 - Prior to v2.5004-22-2025 HPE ProLiant DL320 Gen11 Server - Prior to v2.5004-22-2025 HPE ProLiant DL360 Gen11 Server - Prior to v2.5004-22-2025 HPE...

6.8CVSS6.7AI score0.00142EPSS
Exploits0
Total number of security vulnerabilities1145