Shodan
Vulnerabilities
Vulnerable Software
Hp:  Security Vulnerabilities
CVE-2023-28089
An HPE OneView appliance dump may expose FTP credentials for c7000 Interconnect Modules
CVSS Score
7.1
EPSS Score
0.002
Published
2023-04-25
CVE-2023-28090
An HPE OneView appliance dump may expose SNMPv3 read credentials
CVSS Score
5.5
EPSS Score
0.002
Published
2023-04-25
CVE-2023-28091
HPE OneView virtual appliance "Migrate server hardware" option may expose sensitive information in an HPE OneView support dump
CVSS Score
5.5
EPSS Score
0.002
Published
2023-04-14
CVE-2023-26283
IBM WebSphere Application Server 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 248416.
CVSS Score
5.4
EPSS Score
0.004
Published
2023-04-02
CVE-2023-28083
A remote Cross-site Scripting vulnerability was discovered in HPE Integrated Lights-Out 6 (iLO 6), Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4). HPE has provided software updates to resolve this vulnerability in HPE Integrated Lights-Out.
CVSS Score
8.3
EPSS Score
0.004
Published
2023-03-22
CVE-2023-26281
IBM HTTP Server 8.5 used by IBM WebSphere Application Server could allow a remote user to cause a denial of service using a specially crafted URL. IBM X-Force ID: 248296.
CVSS Score
5.9
EPSS Score
0.011
Published
2023-03-01
CVE-2022-37935
HPE OneView for VMware vCenter, in certain circumstances, may disclose the “HPE OneView” Username and Password.
CVSS Score
5.5
EPSS Score
0.002
Published
2023-03-01
CVE-2022-43927
IBM Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 is vulnerable to information Disclosure due to improper privilege management when a specially crafted table access is used. IBM X-Force ID: 241671.
CVSS Score
5.9
EPSS Score
0.006
Published
2023-02-17
CVE-2022-43929
IBM Db2 for Linux, UNIX and Windows 11.1 and 11.5 may be vulnerable to a Denial of Service when executing a specially crafted 'Load' command. IBM X-Force ID: 241676.
CVSS Score
4.9
EPSS Score
0.007
Published
2023-02-17
CVE-2022-43779
A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in certain HP PC products using AMI UEFI Firmware (system BIOS) which might allow arbitrary code execution, denial of service, and information disclosure. AMI has released updates to mitigate the potential vulnerability.
CVSS Score
7.0
EPSS Score
0.001
Published
2023-02-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved