Filtered by vendor Hp
Subscribe
Total
2513 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2019-11943 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 9.0 HIGH | 8.8 HIGH |
|
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
|
|||||
| CVE-2019-11942 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 9.0 HIGH | 8.8 HIGH |
|
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
|
|||||
| CVE-2019-11941 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 9.0 HIGH | 8.8 HIGH |
|
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
|
|||||
| CVE-2019-11656 | 1 Hp | 1 Arcsight Logger | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
|
Stored XSS vulnerability in Micro Focus ArcSight Logger, affects versions prior to Logger 6.7.1 HotFix 6.7.1.8262.0. This vulnerability could allow Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').
|
|||||
| CVE-2019-11655 | 1 Hp | 1 Arcsight Logger | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
|
Unrestricted file upload vulnerability in Micro Focus ArcSight Logger, version 6.7.0 and later. This vulnerability could allow Unrestricted Upload of File with Dangerous type.
|
|||||
| CVE-2019-11135 | 9 Canonical, Debian, Fedoraproject and 6 more | 304 Ubuntu Linux, Debian Linux, Fedora and 301 more | 2024-11-21 | 2.1 LOW | 6.5 MEDIUM |
|
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.
|
|||||
| CVE-2019-10627 | 2 Hp, Qualcomm | 83 2dr21d, 2dr21d Firmware, D3q15a and 80 more | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Integer overflow to buffer overflow vulnerability in PostScript image handling code used by the PostScript- and PDF-compatible interpreters due to incorrect buffer size calculation. in PostScript and PDF printers that use IPS versions prior to 2019.2 in PostScript and PDF printers that use IPS versions prior to 2019.2
|
|||||
| CVE-2018-9069 | 2 Hp, Lenovo | 133 310s-14isk, 310s-14isk Firmware, 320-15ikbra and 130 more | 2024-11-21 | 7.0 HIGH | 5.9 MEDIUM |
|
In some Lenovo IdeaPad consumer notebook models, a race condition in the BIOS flash device locking mechanism is not adequately protected against, potentially allowing an attacker with administrator access to alter the contents of BIOS.
|
|||||
| CVE-2018-7125 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 6.5 MEDIUM | 6.3 MEDIUM |
|
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
|
|||||
| CVE-2018-7124 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
|
|||||
| CVE-2018-7123 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 7.8 HIGH | 7.5 HIGH |
|
A remote denial of service vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
|
|||||
| CVE-2018-7122 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
A remote disclosure of information vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
|
|||||
| CVE-2018-7121 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
|
|||||
| CVE-2018-7120 | 1 Hp | 2 Synergy, Synergy Firmware | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
A security vulnerability in the HPE Virtual Connect SE 16Gb Fibre Channel Module for HPE Synergy running firmware 5.00.50, which is part of the HPE Synergy Custom SPP 2018.11.20190205, could allow local or remote unauthorized elevation of privilege.
|
|||||
| CVE-2018-7119 | 1 Hp | 6 Nonstop Safeguard H Series, Nonstop Safeguard J Series, Nonstop Safeguard L Series and 3 more | 2024-11-21 | 1.9 LOW | 7.0 HIGH |
|
A Local Disclosure of Sensitive Information vulnerability was identified in HPE NonStop Safeguard earlier than version SPR T9750L01^AIC or T9750H05^AIH, and later versions when the PASSWORD-PROMPT configuration attribute is not set to BLIND; all versions on H-series. STDSEC-STANDARD SECURITY PROD All prior versions before T6533L01^ADU or T6533H05^ADW, and later versions when the PASSWORD-PROMPT configuration attribute is not set to BLIND and all versions on H-series . Note that some commands in ...
Show More |
|||||
| CVE-2018-7118 | 1 Hp | 1 Service Pack For Proliant | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
A local access restriction bypass vulnerability was identified in HPE Service Pack for ProLiant (SPP) Bundled Software earlier than version 2018.09.0.
|
|||||
| CVE-2018-7117 | 1 Hp | 20 Integrated Lights-out 5 Firmware, Proliant Bl460c Gen10, Proliant Dl120 Gen10 and 17 more | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
|
A remote Cross-Site Scripting in HPE iLO 5 Web User Interface vulnerability was identified in HPE Integrated Lights-Out 5 (iLO 5) for Gen10 ProLiant Servers earlier than version v1.40.
|
|||||
| CVE-2018-7116 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
HPE Intelligent Management Center (IMC) prior to IMC PLAT 7.3 (E0605P06) is vulnerable to a remote denial of service via dbman Opcode 10003 'Filename'. This problem is resolved in IMC PLAT 7.3 (E0605P06) or subsequent versions.
|
|||||
| CVE-2018-7115 | 2 Hp, Microsoft | 2 Intelligent Management Center, Windows | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
HPE Intelligent Management Center (IMC) prior to IMC PLAT 7.3 (E0605P06) is vulnerable to a remote buffer overflow in dbman.exe opcode 10001 on Windows. This problem is resolved in IMC PLAT 7.3 (E0605P06) or subsequent versions.
|
|||||
| CVE-2018-7114 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
HPE Intelligent Management Center (IMC) prior to IMC PLAT 7.3 (E0605P06) is vulnerable to remote buffer overflow in dbman leading to code execution. This problem is resolved in IMC PLAT 7.3 (E0605P06) or subsequent versions.
|
|||||
| CVE-2018-7113 | 1 Hp | 3 Gen 10 Servers, Integrated Lights-out, Integrated Lights-out 5 Firmware | 2024-11-21 | 7.2 HIGH | 6.6 MEDIUM |
|
A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) prior to v1.37 could be locally exploited to bypass the security restrictions for firmware updates.
|
|||||
| CVE-2018-7112 | 1 Hp | 204 Integrated Lights-out, Integrated Lights-out 2, Integrated Lights-out 2 Firmware and 201 more | 2024-11-21 | 4.9 MEDIUM | 5.5 MEDIUM |
|
The HPE-provided Windows firmware installer for certain Gen9, Gen8, G7,and G6 HPE servers allows local disclosure of privileged information. This issue was resolved in previously provided firmware updates as follows. The HPE Windows firmware installer was updated in the system ROM updates which also addressed the original Spectre/Meltdown set of vulnerabilities. At that time, the Windows firmware installer was also updated in the versions of HPE Integrated Lights-Out 2, 3, and 4 (iLO 2, 3, and 4 ...
Show More |
|||||
| CVE-2018-7111 | 1 Hp | 1 Universal Internet Of Things | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
A remote unauthorized access vulnerability was identified in HPE UIoT versions 1.5, 1.4.0, 1.4.1, 1.4.2, 1.2.4.2. Specifically, there is a malfunction identified in some section of the DSM portal and some DSM APIs. The impact of the malfunction is that the info can be changed by other users.
|
|||||
| CVE-2018-7109 | 1 Hp | 1 Enhanced Internet Usage Manager | 2024-11-21 | 5.5 MEDIUM | 6.5 MEDIUM |
|
HPE has addressed a remote arbitrary file modification vulnerability in HPE enhanced Internet Usage Manager (eIUM) v9.0FP1 with the cumulative patch for v9.0FP1 - eIUM90FP01XXX.YYYYMMDD-HHMM.
|
|||||
| CVE-2018-7105 | 1 Hp | 5 Gen 10 Servers, Integrated Lights-out, Integrated Lights-out 3 Firmware and 2 more | 2024-11-21 | 9.0 HIGH | 7.2 HIGH |
|
A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers prior to v1.35, HPE Integrated Lights-Out 4 (iLO 4) prior to v2.61, HPE Integrated Lights-Out 3 (iLO 3) prior to v1.90 could be remotely exploited to execute arbitrary code leading to disclosure of information.
|
|||||
| CVE-2018-7104 | 1 Hp | 1 Intelligent Management Center Wireless Services Manager Software | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
A Remote Code Execution vulnerability was identified in HPE Intelligent Management Center (iMC) Wireless Services Manager Software earlier than version IMC WSM 7.3 E0506P02.
|
|||||
| CVE-2018-7103 | 1 Hp | 1 Intelligent Management Center Wireless Services Manager Software | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
A Remote Code Execution vulnerability was identified in HPE Intelligent Management Center (iMC) Wireless Services Manager Software earlier than version IMC WSM 7.3 E0506P02.
|
|||||
| CVE-2018-7102 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
A security vulnerability in HPE Intelligent Management Center (iMC) PLAT E0506P09, createFabricAutoCfgFile could be remotely exploited via directory traversal to allow remote arbitrary file modification.
|
|||||
| CVE-2018-7101 | 1 Hp | 17 Integrated Lights-out, Integrated Lights-out 4 Firmware, Integrated Lights-out 5 Firmware and 14 more | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
A potential remote denial of service security vulnerability has been identified in HPE Integrated Lights Out 4 prior to v2.60 and iLO 5 for Gen 10 servers prior to v1.30.
|
|||||
| CVE-2018-7100 | 1 Hp | 6 Officeconnect 1810-24g Switch, Officeconnect 1810-24g Switch Firmware, Officeconnect 1810-48g Switch and 3 more | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
A potential security vulnerability has been identified in HPE OfficeConnect 1810 Switch Series (HP 1810-24G - P.2.22 and previous versions, HP 1810-48G PK.1.34 and previous versions, HP 1810-8 v2 P.2.22 and previous versions). The vulnerability could allow local disclosure of sensitive information.
|
|||||
| CVE-2018-7099 | 1 Hp | 1 3par Service Provider | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
A security vulnerability was identified in 3PAR Service Processor (SP) prior to SP-4.4.0.GA-110(MU7). The vulnerability may be locally exploited to allow disclosure of privileged information.
|
|||||
| CVE-2018-7098 | 1 Hp | 1 3par Service Provider | 2024-11-21 | 3.6 LOW | 8.4 HIGH |
|
A security vulnerability was identified in 3PAR Service Processor (SP) prior to SP-4.4.0.GA-110(MU7). The vulnerability may be locally exploited to allow directory traversal.
|
|||||
| CVE-2018-7097 | 1 Hp | 1 3par Service Provider | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
A security vulnerability was identified in 3PAR Service Processor (SP) prior to SP-4.4.0.GA-110(MU7). The vulnerability may be exploited remotely to allow cross-site request forgery.
|
|||||
| CVE-2018-7096 | 1 Hp | 1 3par Service Provider | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
A security vulnerability was identified in 3PAR Service Processor (SP) prior to SP-4.4.0.GA-110(MU7). The vulnerability may be exploited remotely to allow code execution.
|
|||||
| CVE-2018-7095 | 1 Hp | 1 3par Service Provider | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
A security vulnerability was identified in 3PAR Service Processor (SP) prior to SP-4.4.0.GA-110(MU7). The vulnerability may be exploited remotely to allow access restriction bypass.
|
|||||
| CVE-2018-7093 | 1 Hp | 7 Integrated Lights-out, Integrated Lights-out 3 Firmware, Integrated Lights-out 4 Firmware and 4 more | 2024-11-21 | 7.8 HIGH | 8.6 HIGH |
|
A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5 prior to v1.30, Moonshot Chassis Manager firmware prior to v1.58, and Moonshot Component Pack prior to v2.55 could be remotely exploited to create a denial of service.
|
|||||
| CVE-2018-7092 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | 6.4 MEDIUM | 7.5 HIGH |
|
A potential security vulnerability has been identified in HPE Intelligent Management Center Platform (IMC Plat) 7.3 E0506P09. The vulnerability could be remotely exploited to allow for remote directory traversal leading to arbitrary file deletion.
|
|||||
| CVE-2018-7091 | 1 Hp | 1 Xp 9000 Command View | 2024-11-21 | 5.8 MEDIUM | 6.1 MEDIUM |
|
HPE XP P9000 Command View Advanced Edition Software (CVAE) has open URL redirection vulnerability in versions 7.0.0-00 to earlier than 8.60-00 of DevMgr, TSMgr and RepMgr.
|
|||||
| CVE-2018-7090 | 1 Hp | 1 Xp 9000 Command View | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
|
HPE XP P9000 Command View Advanced Edition Software (CVAE) has local and remote cross site scripting vulnerability in versions 7.0.0-00 to earlier than 8.60-00 of DevMgr, TSMgr and RepMgr.
|
|||||
| CVE-2018-7078 | 1 Hp | 3 Integrated Lights-out, Integrated Lights-out 4 Firmware, Integrated Lights-out 5 Firmware | 2024-11-21 | 9.0 HIGH | 7.2 HIGH |
|
A remote code execution was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than version v2.60 and HPE Integrated Lights-Out 5 (iLO 5) earlier than version v1.30.
|
|||||