A potential vulnerability has been identified in HPE OneView Global Dashboard release 2.31 which could lead to a local disclosure of privileged information. HPE has provided an update to OneView Global Dashboard. The issue is resolved in 2.32.
5.5CVSS
5.1AI Score
0.0004EPSS
A remote cross-site scripting vulnerability was discovered in HPE OneView Global Dashboard version(s): Prior to 2.5. HPE has provided a software update to resolve this vulnerability in HPE OneView Global Dashboard.
6.1CVSS
5.9AI Score
0.001EPSS
A remote URL redirection vulnerability was discovered in HPE OneView Global Dashboard version(s): Prior to 2.5. HPE has provided a software update to resolve this vulnerability in HPE OneView Global Dashboard.
6.1CVSS
6.2AI Score
0.001EPSS
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hewlett Packard Enterprise HPE OneView Global Dashboard (OVGD).
6.1CVSS
6.2AI Score
0.001EPSS
HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens
5.5CVSS
5.7AI Score
0.0004EPSS
An HPE OneView Global Dashboard (OVGD) appliance dump may expose OVGD user account credentials
5.5CVSS
5.6AI Score
0.0004EPSS