Shodan
Vulnerabilities
Vulnerable Software
Hp:  >> Oneview  >> 5.20.01  Security Vulnerabilities
CVE-2023-28089
An HPE OneView appliance dump may expose FTP credentials for c7000 Interconnect Modules
CVSS Score
7.1
EPSS Score
0.001
Published
2023-04-25
CVE-2023-28090
An HPE OneView appliance dump may expose SNMPv3 read credentials
CVSS Score
5.5
EPSS Score
0.001
Published
2023-04-25
CVE-2022-28625
A local disclosure of sensitive information vulnerability was discovered in HPE OneView version(s): Prior to 7.0 or 6.60.01. A low privileged user could locally exploit this vulnerability to disclose sensitive information resulting in a complete loss of confidentiality, integrity, and availability. To exploit this vulnerability, HPE OneView must be configured with credential access to external repositories. HPE has provided a software update to resolve this vulnerability in HPE OneView.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-08-31
CVE-2022-28616
A remote server-side request forgery (ssrf) vulnerability was discovered in HPE OneView version(s): Prior to 7.0. HPE has provided a software update to resolve this vulnerability in HPE OneView.
CVSS Score
9.8
EPSS Score
0.005
Published
2022-05-17
CVE-2022-28617
A remote bypass security restrictions vulnerability was discovered in HPE OneView version(s): Prior to 7.0. HPE has provided a software update to resolve this vulnerability in HPE OneView.
CVSS Score
9.8
EPSS Score
0.005
Published
2022-05-17
CVE-2022-23706
A remote cross-site scripting (xss) vulnerability was discovered in HPE OneView version(s): Prior to 7.0. HPE has provided a software update to resolve this vulnerability in HPE OneView.
CVSS Score
6.1
EPSS Score
0.005
Published
2022-05-17
CVE-2022-23697
A remote cross-site scripting (xss) vulnerability was discovered in HPE OneView version(s): Prior to 6.6. HPE has provided a software update to resolve this vulnerability in HPE OneView.
CVSS Score
6.1
EPSS Score
0.005
Published
2022-04-04
CVE-2022-23698
A remote unauthenticated disclosure of information vulnerability was discovered in HPE OneView version(s): Prior to 6.6. HPE has provided a software update to resolve this vulnerability in HPE OneView.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-04-04
CVE-2022-23699
A local authentication restriction bypass vulnerability was discovered in HPE OneView version(s): Prior to 6.6. HPE has provided a software update to resolve this vulnerability in HPE OneView.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-04-04
CVE-2022-23700
A local unauthorized read access to files vulnerability was discovered in HPE OneView version(s): Prior to 6.6. HPE has provided a software update to resolve this vulnerability in HPE OneView.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-04-04


Products
Pricing
Contact Us

Shodan ® - All rights reserved