Lucene search

K

HP Security Vulnerabilities

cve
cve

CVE-2012-3251

Cross-site scripting (XSS) vulnerability in HP Service Manager Web Tier 7.11, 9.21, and 9.30, and HP Service Center Web Tier 6.28, allows remote attackers to inject arbitrary web script or HTML via unspecified...

5.8AI Score

0.002EPSS

2022-10-03 04:15 PM
26
cve
cve

CVE-2012-3283

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka...

7.8AI Score

0.203EPSS

2022-10-03 04:15 PM
99
cve
cve

CVE-2012-3266

Unspecified vulnerability in IBRIX 6.1.196 through 6.1.251 on HP IBRIX X9000 Storage allows remote attackers to obtain sensitive information via unknown...

6.3AI Score

0.002EPSS

2022-10-03 04:15 PM
22
cve
cve

CVE-2012-3279

Multiple cross-site scripting (XSS) vulnerabilities in HP Network Node Manager i (NNMi) 8.x, 9.0x, 9.1x, and 9.20 allow remote attackers to inject arbitrary web script or HTML via unspecified...

5.8AI Score

0.002EPSS

2022-10-03 04:15 PM
31
cve
cve

CVE-2012-3284

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka...

7.8AI Score

0.203EPSS

2022-10-03 04:15 PM
132
cve
cve

CVE-2012-3250

Unspecified vulnerability in HP Service Manager Server 7.11, 9.21, and 9.30, and HP Service Center Server 6.28, allows remote attackers to cause a denial of service via unknown...

6.8AI Score

0.005EPSS

2022-10-03 04:15 PM
27
cve
cve

CVE-2012-3253

Multiple unspecified vulnerabilities in HP Intelligent Management Center (IMC) before 5.0 E0101P05 allow remote attackers to execute arbitrary code via crafted input, as demonstrated by an integer overflow and heap-based buffer overflow in img.exe for a crafted message...

8.4AI Score

0.028EPSS

2022-10-03 04:15 PM
14
cve
cve

CVE-2012-3285

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka...

7.7AI Score

0.203EPSS

2022-10-03 04:15 PM
104
cve
cve

CVE-2012-3254

Multiple unspecified vulnerabilities in HP iNode Management Center before iNode PC 5.1 E0304 allow remote attackers to execute arbitrary code via crafted input, as demonstrated by a stack-based buffer overflow in iNodeMngChecker.exe for a crafted 0x0A0BF007...

8.3AI Score

0.028EPSS

2022-10-03 04:15 PM
20
cve
cve

CVE-2012-3276

HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, 8.2, 8.3, and 8.4 on the Alpha platform does not properly implement the LOGIN and ACME_SERVER ACMELOGIN programs, which allows local users to cause a denial of service via unspecified...

6.4AI Score

0.0004EPSS

2022-10-03 04:15 PM
21
cve
cve

CVE-2012-3274

Stack-based buffer overflow in uam.exe in the User Access Manager (UAM) component in HP Intelligent Management Center (IMC) before 5.1 E0101P01 allows remote attackers to execute arbitrary code via vectors related to log...

8.1AI Score

0.901EPSS

2022-10-03 04:15 PM
25
cve
cve

CVE-2012-3249

HP Fortify Software Security Center 3.1, 3.3, 3.4, and 3.5 allows remote authenticated users to obtain sensitive information via unspecified...

5.9AI Score

0.001EPSS

2022-10-03 04:15 PM
22
cve
cve

CVE-2012-3278

Stack-based buffer overflow in magentservice.exe in HP Diagnostics Server 8.x through 8.07 and 9.x through 9.21 allows remote attackers to execute arbitrary code via a malformed message...

8.3AI Score

0.03EPSS

2022-10-03 04:15 PM
21
cve
cve

CVE-2012-3280

Multiple unspecified vulnerabilities on HP NonStop Servers H06.x and J06.x allow remote authenticated users to obtain sensitive information, modify data, or cause a denial of service via an OSS Remote Operation over an Expand...

7AI Score

0.001EPSS

2022-10-03 04:15 PM
17
cve
cve

CVE-2012-3281

Unspecified vulnerability in Device Manager in HP XP P9000 Command View Advanced Edition before 7.4.0-00 allows remote attackers to cause a denial of service via unknown...

6.8AI Score

0.005EPSS

2022-10-03 04:15 PM
17
cve
cve

CVE-2011-0514

The RDS service (rds.exe) in HP Data Protector Manager 6.11 allows remote attackers to cause a denial of service (crash) via a packet with a large data size to TCP port...

6.7AI Score

0.968EPSS

2022-10-03 04:15 PM
24
cve
cve

CVE-2011-2411

Unspecified vulnerability on HP NonStop Servers with software H06.x through H06.23.00 and J06.x through J06.12.00, when Samba is used, allows remote authenticated users to execute arbitrary code via unknown...

7.6AI Score

0.005EPSS

2022-10-03 04:15 PM
24
cve
cve

CVE-2011-2405

The HP ProLiant SL Advanced Power Manager (SL-APM) with firmware before 1.20 does not properly validate users, which allows remote attackers to cause a denial of service via unspecified...

6.9AI Score

0.007EPSS

2022-10-03 04:15 PM
20
cve
cve

CVE-2011-2408

Cross-site scripting (XSS) vulnerability in the Contacts application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified...

5.8AI Score

0.007EPSS

2022-10-03 04:15 PM
19
cve
cve

CVE-2011-2410

Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote attackers to inject arbitrary web script or HTML via unspecified...

5.7AI Score

0.002EPSS

2022-10-03 04:15 PM
18
cve
cve

CVE-2011-2409

Cross-site scripting (XSS) vulnerability in the Calendar application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified...

5.8AI Score

0.007EPSS

2022-10-03 04:15 PM
21
cve
cve

CVE-2011-4791

DBServer.exe in HP Data Protector Media Operations 6.11 and earlier allows remote attackers to execute arbitrary code via a crafted request containing a large value in a length...

7.6AI Score

0.064EPSS

2022-10-03 04:15 PM
22
cve
cve

CVE-2011-4167

Stack-based buffer overflow in MPAUploader.dll in HP Managed Printing Administration before 2.6.4 allows remote attackers to execute arbitrary code via a long filename parameter in an uploadfile action to...

8AI Score

0.188EPSS

2022-10-03 04:15 PM
21
cve
cve

CVE-2011-4169

Unspecified vulnerability in HP Managed Printing Administration before 2.6.4 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown...

6.7AI Score

0.008EPSS

2022-10-03 04:15 PM
19
cve
cve

CVE-2011-4166

Directory traversal vulnerability in the MPAUploader.Uploader.1.UploadFiles method in HP Managed Printing Administration before 2.6.4 allows remote attackers to create arbitrary files via crafted form...

6.6AI Score

0.96EPSS

2022-10-03 04:15 PM
37
cve
cve

CVE-2011-4790

Unspecified vulnerability in HP Network Automation 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to execute arbitrary code via unknown...

7.8AI Score

0.031EPSS

2022-10-03 04:15 PM
18
cve
cve

CVE-2011-4786

A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via unspecified vectors, a different vulnerability than CVE-2011-2404 and...

6.8AI Score

0.933EPSS

2022-10-03 04:15 PM
109
cve
cve

CVE-2011-4787

A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via unspecified vectors, a different vulnerability than CVE-2011-2404 and...

6.8AI Score

0.933EPSS

2022-10-03 04:15 PM
27
cve
cve

CVE-2011-4168

Directory traversal vulnerability in hpmpa/jobDelivery/Default.asp in HP Managed Printing Administration before 2.6.4 allows remote attackers to create arbitrary files via crafted form...

6.6AI Score

0.198EPSS

2022-10-03 04:15 PM
19
cve
cve

CVE-2011-1850

Stack-based buffer overflow in the logging functionality in dbman.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via vectors related to a received...

8AI Score

0.12EPSS

2022-10-03 04:15 PM
33
cve
cve

CVE-2011-1851

Stack-based buffer overflow in tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a long mode...

8AI Score

0.12EPSS

2022-10-03 04:15 PM
27
cve
cve

CVE-2011-1853

tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a (1) large or (2) invalid opcode field, related to a function pointer...

7.6AI Score

0.114EPSS

2022-10-03 04:15 PM
26
cve
cve

CVE-2011-1848

Stack-based buffer overflow in img.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a crafted length field in a...

7.9AI Score

0.122EPSS

2022-10-03 04:15 PM
27
cve
cve

CVE-2011-1515

The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (daemon exit) via a request containing crafted...

6.4AI Score

0.007EPSS

2022-10-03 04:15 PM
21
cve
cve

CVE-2011-1514

The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request containing crafted...

6.5AI Score

0.007EPSS

2022-10-03 04:15 PM
22
cve
cve

CVE-2011-1854

Use-after-free vulnerability in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a long syslog packet, related to an exception...

7.6AI Score

0.092EPSS

2022-10-03 04:15 PM
24
cve
cve

CVE-2011-1852

Multiple stack-based buffer overflows in tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allow remote attackers to execute arbitrary code via crafted packet content accompanying a (1) DATA or (2) ERROR...

7.7AI Score

0.139EPSS

2022-10-03 04:15 PM
30
cve
cve

CVE-2011-1849

tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to create or overwrite files, and subsequently execute arbitrary code, via a crafted WRQ...

7.1AI Score

0.089EPSS

2022-10-03 04:15 PM
23
cve
cve

CVE-2011-3337

eEye Audit ID 2499 in eEye Digital Security Audits 2406 through 2423 for eEye Retina Network Security Scanner on HP-UX, IRIX, and Solaris allows local users to gain privileges via a Trojan horse gauntlet program in an arbitrary directory under...

6.9AI Score

0.0004EPSS

2022-10-03 04:15 PM
22
cve
cve

CVE-2011-3846

Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) 6.2.2.7 allows remote attackers to hijack the authentication of administrators for requests that create administrative...

7.3AI Score

0.001EPSS

2022-10-03 04:15 PM
27
cve
cve

CVE-2013-2352

LeftHand OS (aka SAN iQ) 10.5 and earlier on HP StoreVirtual Storage devices does not provide a mechanism for disabling the HP Support challenge-response root-login feature, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of an unused one-time...

6.8AI Score

0.006EPSS

2022-10-03 04:15 PM
28
cve
cve

CVE-2013-2369

Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka...

7.9AI Score

0.203EPSS

2022-10-03 04:15 PM
23
cve
cve

CVE-2013-2360

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-2013-2357, CVE-2013-2358, and...

6.1AI Score

0.003EPSS

2022-10-03 04:15 PM
24
cve
cve

CVE-2013-2342

The HP StoreOnce D2D backup system with software before 3.0.0 has a default password of badg3r5 for the HPSupport account, which allows remote attackers to obtain administrative access and delete data via an SSH...

6.9AI Score

0.002EPSS

2022-10-03 04:15 PM
23
cve
cve

CVE-2013-2365

HP Database and Middleware Automation (DMA) 10.x before 10.10, when SSL is used, allows remote attackers to obtain sensitive information via unspecified...

6.4AI Score

0.001EPSS

2022-10-03 04:15 PM
16
cve
cve

CVE-2013-2368

Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to cause a denial of service via unknown vectors, aka...

6.5AI Score

0.102EPSS

2022-10-03 04:15 PM
104
cve
cve

CVE-2013-2370

Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka...

7.6AI Score

0.948EPSS

2022-10-03 04:15 PM
108
cve
cve

CVE-2013-2361

Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified...

5.7AI Score

0.002EPSS

2022-10-03 04:15 PM
24
cve
cve

CVE-2013-2323

HP SQL/MX 3.0 through 3.2 on NonStop servers, when SQL/MP Objects are used, allows remote authenticated users to bypass intended access restrictions and modify data via unspecified vectors, aka the "SQL/MP tables"...

6.5AI Score

0.002EPSS

2022-10-03 04:15 PM
16
cve
cve

CVE-2013-2327

Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows remote attackers to execute arbitrary code via unknown vectors, aka...

7.8AI Score

0.294EPSS

2022-10-03 04:15 PM
96
Total number of security vulnerabilities2364