Hp: Security Vulnerabilities
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Remote Code Execution.
CVSS Score
9.8
EPSS Score
0.03
Published
2023-04-28
HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens
CVSS Score
5.5
EPSS Score
0.001
Published
2023-04-25
An HPE OneView appliance dump may expose proxy credential settings
CVSS Score
5.5
EPSS Score
0.001
Published
2023-04-25
An HPE OneView appliance dump may expose OneView user accounts
CVSS Score
5.5
EPSS Score
0.001
Published
2023-04-25
An HPE OneView appliance dump may expose SAN switch administrative credentials
CVSS Score
7.8
EPSS Score
0.001
Published
2023-04-25
An HPE OneView appliance dump may expose FTP credentials for c7000 Interconnect Modules
CVSS Score
7.1
EPSS Score
0.001
Published
2023-04-25
An HPE OneView appliance dump may expose SNMPv3 read credentials
CVSS Score
5.5
EPSS Score
0.001
Published
2023-04-25
HPE OneView virtual appliance "Migrate server hardware" option may expose sensitive information in an HPE OneView support dump
CVSS Score
5.5
EPSS Score
0.001
Published
2023-04-14
IBM WebSphere Application Server 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 248416.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-04-02
A remote Cross-site Scripting vulnerability was discovered in HPE Integrated Lights-Out 6 (iLO 6), Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4). HPE has provided software updates to resolve this vulnerability in HPE Integrated Lights-Out.
CVSS Score
8.3
EPSS Score
0.002
Published
2023-03-22