Hp: Security Vulnerabilities
A potential security vulnerability has been identified in the system BIOS for certain HP Workstation PCs, which might allow escalation of privilege, arbitrary code execution, or denial of service. HP is releasing mitigation for the potential vulnerability.
CVSS Score
7.9
EPSS Score
0.002
Published
2024-02-14
Potential vulnerabilities have been identified in certain HP Desktop PC products using the HP TamperLock feature, which might allow intrusion detection bypass via a physical attack. HP is releasing firmware and guidance to mitigate these potential vulnerabilities.
CVSS Score
6.4
EPSS Score
0.003
Published
2024-02-14
HPE OneView may have a missing passphrase during restore.
CVSS Score
5.5
EPSS Score
0.002
Published
2024-01-23
HPE OneView may allow clusterService Authentication Bypass resulting in denial of service.
CVSS Score
7.5
EPSS Score
0.01
Published
2024-01-23
HPE OneView may allow command injection with local privilege escalation.
CVSS Score
7.8
EPSS Score
0.007
Published
2024-01-23
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server)
10.5, 11.1 and 11.5
could allow an authenticated user with CONNECT privileges to cause a denial of service using a specially crafted query. IBM X-Force ID: 270750.
CVSS Score
5.3
EPSS Score
0.007
Published
2024-01-22
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.1, 10.5, and 11.1 could allow an authenticated user with CONNECT privileges to cause a denial of service using a specially crafted query. IBM X-Force ID: 272646.
CVSS Score
5.3
EPSS Score
0.007
Published
2024-01-22
IBM Db2 10.1, 10.5, and 11.1 could allow a remote user to execute arbitrary code caused by installing like named jar files across multiple databases. A user could exploit this by installing a malicious jar file that overwrites the existing like named jar file in another database. IBM X-Force ID: 249205.
CVSS Score
6.5
EPSS Score
0.01
Published
2024-01-22
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could allow an authenticated user with CONNECT privileges to cause a denial of service using a specially crafted query. IBM X-Force ID: 272644.
CVSS Score
5.3
EPSS Score
0.007
Published
2024-01-22
A potential security vulnerability has been identified with HP-UX System Management Homepage (SMH). This vulnerability could be exploited locally or remotely to disclose information.
CVSS Score
7.2
EPSS Score
0.005
Published
2023-12-17