Shodan
Vulnerabilities
Vulnerable Software
Hpe:  Security Vulnerabilities
CVE-2024-53673
A java deserialization vulnerability in HPE Remote Insight Support may allow an unauthenticated attacker to execute code.
CVSS Score
8.1
EPSS Score
0.011
Published
2024-11-26
CVE-2024-53674
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
CVSS Score
7.3
EPSS Score
0.002
Published
2024-11-26
CVE-2024-53675
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
CVSS Score
7.3
EPSS Score
0.042
Published
2024-11-26
CVE-2024-11622
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
CVSS Score
7.3
EPSS Score
0.001
Published
2024-11-26
CVE-2024-22441
HPE Cray Parallel Application Launch Service (PALS) is subject to an authentication bypass.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-06-13
CVE-2023-50272
A potential security vulnerability has been identified in HPE Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 6 (iLO 6). The vulnerability could be remotely exploited to allow authentication bypass.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-12-19
CVE-2023-30912
A remote code execution issue exists in HPE OneView.
CVSS Score
7.2
EPSS Score
0.01
Published
2023-10-25
CVE-2023-30911
HPE Integrated Lights-Out 5, and Integrated Lights-Out 6 using iLOrest may cause denial of service.
CVSS Score
6.8
EPSS Score
0.001
Published
2023-10-18
CVE-2023-30910
HPE MSA Controller prior to version IN210R004 could be remotely exploited to allow inconsistent interpretation of HTTP requests. 
CVSS Score
5.4
EPSS Score
0.001
Published
2023-10-09
CVE-2023-39266
A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface.
CVSS Score
8.3
EPSS Score
0.003
Published
2023-08-29


Products
Pricing
Contact Us

Shodan ® - All rights reserved