Hpe: Security Vulnerabilities
HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens
CVSS Score
5.5
EPSS Score
0.002
Published
2023-04-25
An HPE OneView Global Dashboard (OVGD) appliance dump may expose OVGD user account credentials
CVSS Score
5.5
EPSS Score
0.002
Published
2023-04-14
A remote Cross-site Scripting vulnerability was discovered in HPE Integrated Lights-Out 6 (iLO 6), Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4). HPE has provided software updates to resolve this vulnerability in HPE Integrated Lights-Out.
CVSS Score
8.3
EPSS Score
0.004
Published
2023-03-22
Potential security vulnerabilities have been identified in the HPE FlexFabric 5700 Switch Series. These vulnerabilities could be remotely exploited to allow host header injection and URL redirection. HPE has made the following software to resolve the vulnerability in HPE FlexFabric 5700 Switch Series version R2432P61 or later.
CVSS Score
5.3
EPSS Score
0.003
Published
2023-03-22
An authenticated remote code execution vulnerability
exists in the AOS-CX Network Analytics Engine. Successful
exploitation of this vulnerability results in the ability to
execute arbitrary code as a privileged user on the underlying
operating system, leading to a complete compromise of the
switch running AOS-CX.
CVSS Score
7.2
EPSS Score
0.011
Published
2023-03-22
A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers. The vulnerability could be locally exploited to allow disclosure of information. HPE has made the following software to resolve the vulnerability in HPE Superdome Flex Servers v3.65.8 and Superdome Flex 280 Servers v1.45.8.
CVSS Score
2.3
EPSS Score
0.002
Published
2023-03-10
Unauthenticated Java deserialization vulnerability in Serviceguard Manager
CVSS Score
9.8
EPSS Score
0.008
Published
2023-03-01
Pre-auth memory corruption in HPE Serviceguard
CVSS Score
9.8
EPSS Score
0.007
Published
2023-03-01
Unauthenticated server side request forgery in HPE Serviceguard Manager
CVSS Score
9.8
EPSS Score
0.006
Published
2023-03-01
A potential security vulnerability has been identified in HPE OfficeConnect 1820, and 1850 switch series. The vulnerability could be remotely exploited to allow remote directory traversal in HPE OfficeConnect 1820 switch series version PT.02.17 and below, HPE OfficeConnect 1850 switch series version PC.01.23 and below, and HPE OfficeConnect 1850 (10G aggregator) switch version PO.01.22 and below.
CVSS Score
6.8
EPSS Score
0.018
Published
2023-01-05