Lucene search
K

1147 matches found

HPE Security Bulletins
HPE Security Bulletins
added 2024/08/13 12:0 a.m.3 views

HPESBHF04687 rev.1 - Certain HPE SimpliVity AMD Servers Using Certain AMD EPYC Processors, AMD-SB-3003: AMD Server Vulnerabilities, Multiple Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Denial of Service DoS, Disclosure of Privileged Information, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen 11 - Prior to HPE SimpliVity Support Pack SVTSP version SVTSPGen11-202407...

10CVSS6.1AI score0.00299EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/08/09 12:0 a.m.2 views

HPESBHF04676 rev.1 - Certain HPE ProLiant AMD Servers Using Certain AMD EPYC Processors, AMD-SB-7014: SMM Lock Bypass, Local Arbitrary Code Execution Vulnerability

Potential Security Impact: Local: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL325 Gen11 Server - Prior to v1.6406-19-2024 HPE ProLiant DL345 Gen11 Server - Prior to v1.6406-19-2024 HPE ProLiant DL365 Gen11 Server - Prior to v1.6406-19-20...

7.5CVSS6.1AI score0.00622EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/08/06 12:0 a.m.2 views

HPESBNW04674 rev.1 - HPE Athonet Unauthenticated Remote Code Execution (RCE) Vulnerability in OpenSSH's Server (RegreSSHion)

Potential Security Impact: Remote: Code Execution, Unauthenticated Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Athonet Mobile Core All versions up to 1.24.1.1 - In Athonet Mobile Core version 1.24.1.0 and 1.24.1.1, SSH is disabled by default, but it ca...

8.1CVSS6.8AI score0.99506EPSS
Exploits68
HPE Security Bulletins
HPE Security Bulletins
added 2024/08/02 12:0 a.m.2 views

HPESBNW04678 rev.4 - HPE Aruba Networking Access Points Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary Code Execution, Arbitrary Command Execution, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 100 Series Access Points See Vulnerability Summary for details Aruba 103 Series Access Points See Vulnerability...

9.8CVSS6.8AI score0.93305EPSS
Exploits12
HPE Security Bulletins
HPE Security Bulletins
added 2024/08/01 12:0 a.m.3 views

HPESBST04679 rev.2 - HPE Fibre Channel and SAN Switches with Brocade Fabric OS (FOS), Multiple Vulnerabilities

Potential Security Impact: Remote: Denial of Service DoS, Disclosure of Sensitive Information, Unauthorized Data Modification, Unauthorized Read Access to Data, Buffer Overflow, Stack Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Brocade 32Gb Fibre Channel SAN Switch fo...

8.8CVSS6.8AI score0.22791EPSS
Exploits8
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/30 12:0 a.m.2 views

HPESBNW04675 rev.1 - ClearPass Policy Manager Multiple Vulnerabilities

Potential Security Impact: Local: Authentication Bypass; Remote: Disclosure of Sensitive Information, SQL Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba ClearPass Enterprise Software Please refer to the Vulnerability Summary for Version Information Aruba ClearPass...

9CVSS7AI score0.14859EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/23 12:0 a.m.2 views

HPESBGN04670 rev.1 - HPE Unified OSS Console Assurance Monitoring (UOCAM), Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Buffer Overflow; Remote: Cross-Site Scripting XSS, Denial of Service DoS, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified OSS Console UOC - Prior to v3.1.7 CVSS Scores: | CVE | CVSS Vector | Base...

8.2CVSS7AI score0.03114EPSS
Exploits7
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/23 12:0 a.m.3 views

HPESBNW04673 rev.1 - HPE Aruba Networking EdgeConnect SD-WAN, Multiple Vulnerabilities

Potential Security Impact: Remote: Access Restriction Bypass, Arbitrary Code Execution, Arbitrary Command Execution, Authentication Bypass, Code Execution, Disclosure of Sensitive Information, Execution of Arbitrary Commands SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba...

8.8CVSS6.7AI score0.93305EPSS
Exploits12
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/23 12:0 a.m.3 views

HPESBNW04672 rev.2 - HPE Aruba Networking EdgeConnect SD-WAN Orchestrator, Multiple Vulnerabilities

Potential Security Impact: Local: Cross-Site Scripting XSS; Remote: Arbitrary Command Execution, Code Execution, Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba EdgeConnect Enterprise Orchestration Software See Vulnerability Summary Affected Products...

9CVSS6.1AI score0.00778EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/22 12:0 a.m.2 views

HPESBHF04671 rev.2 - Certain HPE ProLiant DL/ML/SY/XL Edgeline and Alletra Servers, Out-of-Bounds Write Vulnerability

Potential Security Impact: Local: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Alletra 4110 - Prior to v2.2005-27-2024 HPE Alletra 4120 - Prior to v2.2005-27-2024 HPE ProLiant DL20 Gen11 - Prior to v1.4803-14-2024 HPE ProLiant DL110 Gen11 - Prior to...

9.8CVSS6.1AI score0.00995EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/16 12:0 a.m.5 views

HPESBST04663 rev.1 - HPE 3PAR Service Processor Software, Remote Bypass Security Restriction Vulnerability

Potential Security Impact: Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 3PAR Service Processor v5.1.1 and earlier CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2024-22442 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:...

9.8CVSS6.1AI score0.00624EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/16 12:0 a.m.3 views

HPESBGN04665 rev.1 - HPE Unified OSS Console Assurance Monitoring (UOCAM), Multiple Vulnerabilities

Potential Security Impact: Local: Elevated Privileges, memory corruption, Buffer Overflow, Input Validation; Remote: Arbitrary Code Execution, Arbitrary Command Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified OSS Console UOC - Prior to v3.1.6 CVSS Scores: | C...

9.8CVSS7AI score0.02554EPSS
Exploits6
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/15 12:0 a.m.2 views

HPESBHF04603 rev.1 - HPE ProLiant DL/ML/XL, Synergy, Edgeline and Alletra Servers Using OpenSSL, Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS; Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen11 -Prior to v1.4803-14-2024 HPE ProLiant DL110 Gen11 -Prior to v2.2005-27-2024 HPE ProLiant DL320 Gen11 Server -Prior to...

5.5CVSS6.5AI score0.04459EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/12 12:0 a.m.2 views

HPESBCR04667 rev.1 - HPE Cray Servers Using AMI MegaRac SPX Software (AMI-SA-2023010), Multiple Vulnerabilities

Potential Security Impact: Local: memory corruption, Buffer Overflow, Null pointer dereference SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cray XD665 - prior to BMC 1.14 in HPE Cray SC XD665 Firmware Pack 2024.01.00 HPE Cray XD670 - prior to BMC 1.14 in BMC Firmware for HP...

9.6CVSS6.1AI score0.00308EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/12 12:0 a.m.2 views

HPESBHF04668 rev.1 - HPE Moonshot 1500 Chassis Manager 2.0, Multiple Vulnerabilities

Potential Security Impact: Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Moonshot 1500 2.0 Chassis Manager Module - Prior to v4.0-b43 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2019-17594 |...

9.8CVSS6.7AI score0.82017EPSS
Exploits46
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/10 12:0 a.m.3 views

HPESBNW04669 rev.2 - Unauthenticated Remote Code Execution vulnerability in OpenSSH's Server (RegreSSHion)

Potential Security Impact: Remote: Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Fabric Composer See Vulnerability Summary Aruba EdgeConnect Enterprise Orchestration Software See Vulnerability Summary Aruba CX 10000 Switch Series See Vulnerability Summary...

8.1CVSS6.8AI score0.99506EPSS
Exploits68
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/09 12:0 a.m.2 views

HPESBNW04662 rev.7 - RADIUS protocol susceptible to forgery attacks

Potential Security Impact: Local: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba AirWave Management Platform See Vulnerability Summary Aruba ClearPass Policy Manager Platform See Vulnerability Summary ArubaOS SD-WAN Gateways See Vulnerability Summary...

9CVSS7.1AI score0.14859EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/03 12:0 a.m.3 views

HPESBCR04666 rev.1 - Certain HPE Cray Servers Using Certain AMD EPYC Processors, AMD-SB-7009: AMD Processor Security Notice, Local Arbitrary Code Execution Vulnerability

Potential Security Impact: Local: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cray EX235a Accelerator Blade prior to BIOS 1.8.0 in HFP 24.3.1 HPE Cray EX235n Server prior to BIOS 1.3.1 in HFP 23.9 HPE Cray EX425 Compute Blade prior to BIOS 1.7.2 in...

7.7CVSS6.1AI score
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/06/27 12:0 a.m.3 views

HPESBCR04657 rev.1 - Certain HPE ProLiant DL/XL Servers and HPE Cray Supercomputer Using Certain AMD EPYC Processors, Multiple Vulnerabilities

Potential Security Impact: Local: Arbitrary Code Execution, Code Execution, Denial of Service DoS, Elevated Privileges, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL325 Gen10 Plus server - Prior to 2.84 HFP 23.9 HPE ProLiant DL385 Gen10 Plus serve...

9.8CVSS6.1AI score0.00697EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/06/24 12:0 a.m.2 views

HPESBGN04659 rev.1 - Arbitrary Code Execution in HPE Athonet Mobile Core

Potential Security Impact: Remote: Arbitrary Code Execution, script injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Athonet Mobile Core See vulnerability summary Affected Products These vulnerabilities affect the following HPE Athonet Mobile Core Software version unless...

7.5CVSS6.1AI score0.00421EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/06/11 12:0 a.m.4 views

HPESBHF04638 rev.1 - Certain HPE ProLiant Servers Using Certain AMD EPYC Processors, AMD-SB-1041: SPI Lock Bypass, Local Arbitrary Code Execution Vulnerability

Potential Security Impact: Local: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL325 Gen10 Plus server - Prior to v3.1005-16-2024 HPE ProLiant DL325 Gen10 Plus v2 server - Prior to v3.1005-16-2024 HPE ProLiant DL345 Gen10 Plus server - Prio...

8.2CVSS6.1AI score0.00196EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/06/11 12:0 a.m.3 views

HPESBGN04655 rev.1 - HPE Unified Topology Manager (UTM), Multiple Vulnerabilities

Potential Security Impact: Remote: Cross-Site Request Forgery CSRF, Denial of Service DoS, Unauthorized Code Execution, Unauthorized Execution of Arbitrary Code, XML External Entity XXE SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified Topology Manager UTM - Prior to v4....

10CVSS6.6AI score0.99615EPSS
Exploits41
HPE Security Bulletins
HPE Security Bulletins
added 2024/06/11 12:0 a.m.2 views

HPESBNW04658 rev.1 - HPE Aruba AirWave Management Platform, Multiple OpenSSH Vulnerabilities

Potential Security Impact: Remote: Arbitrary Command Execution, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba AirWave Management Platform See Vulnerability summary Affected Products HPE Aruba Networking AirWave Management Platform 8.3.0....

6.5CVSS6.7AI score0.93305EPSS
Exploits12
HPE Security Bulletins
HPE Security Bulletins
added 2024/06/06 12:0 a.m.4 views

HPESBCR04653 rev.1 - HPE Cray Parallel Application Launch Service (PALS), Authentication Bypass

Potential Security Impact: Remote: Gain Unauthorized Access SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Cray System Management Software - PALS 1.0.0-1.2.13, 1.3.0-1.3.2 are vulnerable CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2024-22441 |...

9.8CVSS6.1AI score0.00493EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/06/05 12:0 a.m.2 views

HPESBHF04651 rev.1 - Certain HPE StoreEasy Servers Using Certain Intel Processor BIOS, INTEL-SA-01036, 2024.2 IPU – Intel TDX Module Software Advisory, Multiple Vulnerabilities

Potential Security Impact: Local: Escalation of Privilege, Input Validation SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreEasy 1670 Performance Storage - Prior to v2.2005-27-2024 HPE StoreEasy 1670 Storage - Prior to v2.2005-27-2024 HPE StoreEasy 1870 Performance Storag...

8.2CVSS6.1AI score0.00379EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/06/04 12:0 a.m.3 views

HPESBHF04642 rev.1 - Certain HPE ProLiant DL/ML/Edgeline/Synergy and Alletra Servers Using Certain Intel Processor BIOS, INTEL-SA-01036, 2024.2 IPU – Intel TDX Module Software Advisory, Multiple Vulnerabilities

Potential Security Impact: Local: Escalation of Privilege, Input Validation SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Alletra 4110 - Prior to v2.2005-27-2024 HPE Alletra 4120 - Prior to v2.2005-27-2024 HPE ProLiant DL110 Gen11 - Prior to v2.2005-27-2024 HPE ProLiant DL32...

8.2CVSS6.1AI score0.00379EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/05/31 12:0 a.m.2 views

HPESBCR04644 rev.1 - Certain HPE Cray Servers Using Certain Intel Processors, INTEL-SA-00950, 2023.4 IPU Out-of-Band (OOB) - Intel Processor Advisory, Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cray EX420 Compute Blade - Prior to BIOS v.1.3.0 HFP 24.3.1 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- |...

8.8CVSS6.1AI score0.01728EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/05/30 12:0 a.m.2 views

HPESBHF04637 rev.1 - Certain HPE ProLiant DL/ML and MicroServer Using Certain Intel Processors, INTEL-SA-01051, 2024.2 IPU - Intel Processor Advisory, Local Disclosure of Information Vulnerability

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant MicroServer Gen11 - Prior to v1.5005-16-2024 HPE ProLiant DL20 Gen11 - Prior to v1.5005-16-2024 HPE ProLiant ML30 Gen11 - Prior to v1.5005-16-2024 CVSS Scores: ...

2.8CVSS6.1AI score0.00176EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/05/28 12:0 a.m.2 views

HPESB3P04641 rev.3 - HPE Aruba ArubaOS-CX Switches, Multiple OpenSSH Vulnerabilities Impacting AOS-CX Switches

Potential Security Impact: Remote: Arbitrary Command Execution, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba CX 10000 Switch Series See Vulnerability Summary Aruba CX 4100i Switch Series See Vulnerability Summary Aruba CX 6000 Switch...

6.5CVSS6.7AI score0.93305EPSS
Exploits12
HPE Security Bulletins
HPE Security Bulletins
added 2024/05/27 12:0 a.m.3 views

HPESBUX04652 rev.1 - HP-UX 11i v3 Tomcat-based Servlet Engine, Multiple Vulnerabilities

Potential Security Impact: Local: Authentication Bypass, Denial of Service DoS, Disclosure of Information, Unauthorized Access, Insecure Deserialization; Remote: Authentication Bypass, Denial of Service DoS, Disclosure of Information, Unauthorized Access, Insecure Deserialization SUPPORTED SOFTWA...

7.5CVSS6.7AI score0.99999EPSS
Exploits44
HPE Security Bulletins
HPE Security Bulletins
added 2024/05/20 12:0 a.m.3 views

HPESBST04648 rev.1 - HPE B-Series SANnav Management Portal, Local Authentication and Unauthorized Access to Application Database Vulnerability

Potential Security Impact: Local: Unauthorized Access to Application Database, Authentication Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SANnav Management Software - Prior to v2.3.0a and v2.3.1a CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --...

7.8CVSS6.1AI score0.00161EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/05/17 12:0 a.m.2 views

HPESBST04649 rev.1 - HPE SAN Switches with Brocade Fabric OS (FOS), Remote Code Execution and Elevated Privileges Vulnerability

Potential Security Impact: Remote: Arbitrary Code Execution, Elevated Privileges SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE B-series SN2600B SAN Extension Switch - v9.x prior to v9.1.1d1 HPE B-series SN3600B Fibre Channel Switch - v9.x prior to v9.1.1d1 HPE B-series SN470...

9.8CVSS6.1AI score0.01205EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
added 2024/05/14 12:0 a.m.4 views

HPESBNW04647 rev.2 - HPE Aruba Access Points, Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary Code Execution, Arbitrary Command Execution, Compromise of System Integrity, Denial of Service DoS, Disclosure of Privileged Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 260 Series Access Points See Vulnerability...

9.8CVSS6.1AI score0.01651EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/30 12:0 a.m.1 views

HPESBGN04639 rev.1 - HPE OneView, Multiple Vulnerabilities

Potential Security Impact: Remote: Bypass Security Restrictions, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OneView - All versions prior to 8.90 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-42717 |...

7.5CVSS6.1AI score0.03206EPSS
Exploits2
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/30 12:0 a.m.3 views

HPESBNW04640 rev.5 - HPE Aruba Networking Controller and Gateway-Based AOS Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary Code Execution, Code Execution, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Virtual Mobility Controller Software See vulnerability summary for version details. Aruba SD-WAN Software and Gateways See...

9.8CVSS6.1AI score0.43998EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/25 12:0 a.m.3 views

HPESBST04635 rev.1 - HPE SAN Switches with Brocade Fabric OS (FOS), Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Multiple Vulnerabilities; Remote: Multiple Vulnerabilities SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE B-series SN2600B SAN Extension Switch - Prior to v9.2.1, v9.2.0b and v9.1.1d HPE B-series SN3600B Fibre Channel Switch - Prior to v9.2.1...

9.8CVSS6.7AI score0.34174EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/18 12:0 a.m.3 views

HPESBST04631 rev.1 - HPE B-Series SANnav Management Portal, Multiple Vulnerabilities

Potential Security Impact: Local: Unauthorized Access to Files; Remote: Arbitrary File Modification, Denial of Service DoS, Directory Traversal, Disclosure of Information, Disclosure of Sensitive Information, Gain Privileged Access, SQL Injection, Unauthenticated Arbitrary Code Execution,...

9.8CVSS6.7AI score0.01812EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/15 12:0 a.m.2 views

HPESBHF04632 rev.3 - HPE Compute Scale-up Server 3200, Superdome Flex and Superdome Flex 280 servers, Local Buffer Overflow

Potential Security Impact: Local: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Compute Scale-up Server 3200 - Prior to v1.20.128 HPE Superdome Flex 280 Server - Prior to v1.80.20 HPE Superdome Flex Server - Prior to v3.100.26 CVSS Scores: | CVE | CVSS Vector...

7.8CVSS7AI score0.00287EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/15 12:0 a.m.4 views

HPESBNW04575 rev.1 - HPE Telco IP Mediation E-Media, Multiple Vulnerabilities

Potential Security Impact: Local: Denial of Service DoS, Buffer Overflow; Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE TeMIP - Prior to 8.5.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2023-36478 |...

7.5CVSS6.7AI score0.03754EPSS
Exploits3
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/15 12:0 a.m.2 views

HPESBHF04633 rev.1 - HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Servers, Privilege Elevation and Arbitrary Code Execution

Potential Security Impact: Local: Execution of Arbitrary Code With Privilege Elevation, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Compute Scale-up Server 3200 - Prior to v1.20.128 HPE Superdome Flex 280 Server - Prior to v1.70.14 HPE Superdome Flex Server...

9.8CVSS6.2AI score0.00995EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/15 12:0 a.m.2 views

HPESBHF04634 rev.1 - HPE Compute Scale-up Server 3200 Server, Disclosure of Sensitive Information

Potential Security Impact: Remote: Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Compute Scale-up Server 3200 - Prior to v1.10.342 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2024-22440 |...

6.8CVSS6.1AI score0.00429EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/11 12:0 a.m.2 views

HPESBNW04628 rev.1 - HPE OfficeConnect 1820 Network switches, Cross-Site Request Forgery (CSRF)

Potential Security Impact: Local: Cross-Site Request Forgery CSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE OfficeConnect 1820 8G Switch J9979A - Firmware versions prior to PT.02.19 HPE OfficeConnect 1820 8G PoE+ 65W Switch J9982A - Firmware versions prior to PT.02.19 HP...

3.5CVSS6.1AI score0.00206EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/11 12:0 a.m.3 views

HPESBNW04625 rev.1 - Certain HPE FlexNetwork and FlexFabric Switches, Remote Authentication Bypass

Potential Security Impact: Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE FlexFabric 5710 Switch Series - Prior to v7.10.R6710 HPE FlexFabric 5940 Switch Series - Prior to v7.10.R6710 HPE FlexFabric 5944 Switch Series - Prior to v7.10.R6710 HPE...

6.9CVSS6.1AI score0.002EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/09 12:0 a.m.2 views

HPESBGN04598 rev.1 - HPE Unified Correlation Analyzer (UCA), Multiple Vulnerabilities

Potential Security Impact: Remote: Code Execution, Denial of Service DoS, Unauthorized Access, memory corruption, XML External Entity XXE, Insecure Deserialization SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified Correlation Analyzer UCA - Prior to v4.4.0 CVSS Scores: |...

10CVSS6.7AI score0.99654EPSS
Exploits42
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/03 12:0 a.m.2 views

HPESBGN04629 rev.1 - HPE Unified OSS Console Assurance Monitoring (UOCAM), Multiple Vulnerabilities

Potential Security Impact: Local: Disclosure of Sensitive Information, Unauthorized Disclosure of Information, Server-Side Request Forgery SSRF; Remote: Authentication Bypass, Denial of Service DoS, Server-Side Request Forgery SSRF SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. H...

9.8CVSS6.6AI score0.04581EPSS
Exploits5
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/02 12:0 a.m.2 views

HPESBHF04593 rev.6 - HPE ProLiant DL/DX/ML/SY/RL/XL/Edgeline Servers Using BIOS (PixieFail), Multiple Vulnerabilities

Potential Security Impact: Local: Unauthorized Access; Remote: Code Execution, Denial of Service DoS, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL20 Gen11 - Prior to v1.4803-14-2024 HPE ProLiant DL110 Gen11 - Prior to v2.1603-01-2024 HPE ProLiant...

8.8CVSS6.7AI score0.02084EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/02 12:0 a.m.2 views

HPESBST04630 rev.1 - HPE MSA SAN Storage VSS Provider and CAPI Proxy Software, Elevation of Privilege

Potential Security Impact: Local: Elevation of Privilege, Unquoted Search Path SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE MSA 1040 SAN Storage - Prior to v4.1.3.83 HPE MSA 1050 SAN Storage - Prior to v4.1.3.83 HPE MSA 1060 Storage - Prior to v4.1.3.83 HPE MSA 2040 SAN...

7.3CVSS6.1AI score0.00181EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/04/01 12:0 a.m.3 views

HPESBNS04624 rev.2 - HPE NonStop Web ViewPoint Enterprise software, Unauthorized access

Potential Security Impact: Remote: Unauthorized Access to Files SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Web ViewPoint Enterprise T0986 T0986L01^AAX, T0986L01^AAV, T0986L01^AAR, T0986L01^AAP, T0986L01^AAJ, T0986L01^AAH, T0986L01^AAF, T0986L01^AAD, T0986L01^AAB ,T0986H01^AAW...

8.3CVSS6.1AI score0.00437EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/03/26 12:0 a.m.2 views

HPESBMU04626 rev.1 - HPE IceWall Products, Remote Denial of Service (DoS)

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. IceWall Gen11 Enterprise Edition 11.0 Windows - IceWall Gen11 Agent only IceWall Gen11 Standard Edition 11.0 Windows - IceWall Gen11 Agent only IceWall SSO Agent Option 10.0...

6.5CVSS6.1AI score0.00424EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2024/03/26 12:0 a.m.2 views

HPESBNW04627 rev.2 - HPE ArubaOS-Switch Switches, Authenticated Denial of Service Vulnerability in ArubaOS-Switch SSH Daemon

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba 5400R zl2 Switch Series See description summary for more details. Aruba 2930F Switch Series See description summary for more details. Aruba 2920 Switch Series See...

4.9CVSS6.1AI score0.00523EPSS
Exploits0
Total number of security vulnerabilities1147