hpe

187 tracked vulnerabilities.

CVE-2020-24623 MEDIUM
Hewlett Packard Enterprise Universal API Framework - SQL Injection
Sep 18, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-7205 MEDIUM
HPE Intelligent Provisioning and ProLiant Tools - GRUB2 Boot Code Execution
Jul 30, 2020
CVSS 6.7
EPSS 0.00
CVE-2020-7139 HIGH
HPE Nimble Storage - Info Disclosure
May 19, 2020
CVSS 8.1
EPSS 0.00
CVE-2020-7138 HIGH
HPE NimbleOS 3.1.0.0-3.9.2.9 - Remote Code Execution
May 19, 2020
CVSS 8.8
EPSS 0.02
CVE-2020-7137 MEDIUM
HPE Superdome Flex Server Firmware < 3.25.46 - Local Privilege Escalation in RMC Component
May 19, 2020
CVSS 6.7
EPSS 0.00
CVE-2020-7136 CRITICAL NUCLEI
HPE Smart Update Manager <8.5.6 - Info Disclosure
Apr 30, 2020
CVSS 9.8
EPSS 0.63
CVE-2019-12002 CRITICAL
HPE MSA 1040/1050/2040/2042/2050/2052 Firmware < GL225P001 - Access Restriction Bypass via Remote Session Reuse
Apr 17, 2020
CVSS 9.8
EPSS 0.00
CVE-2019-12001 MEDIUM
HPE MSA 1040/1050/2040/2042/2050/2052 < GL225P001 - Remote Session Reuse and Access Bypass
Apr 17, 2020
CVSS 6.4
EPSS 0.00
CVE-2019-11999 MEDIUM
HPE OpenCall Media Platform <4.4.8, 4.5.x - RCE, XSS
Apr 16, 2020
CVSS 6.9
EPSS 0.00
CVE-2019-11998 MEDIUM
HPE Superdome Flex Server <v3.20.206 - Info Disclosure, DoS
Jan 16, 2020
CVSS 5.5
EPSS 0.00
CVE-2019-11137 HIGH
Intel Xeon Platinum/Scalable Firmware - Privilege Escalation, DoS, Info Disclosure via Local Access
Nov 14, 2019
CVSS 8.2
EPSS 0.00
CVE-2019-11136 MEDIUM
Intel Xeon Platinum and Xeon D Firmware - Insufficient Access Control
Nov 14, 2019
CVSS 6.7
EPSS 0.00
CVE-2019-11996 CRITICAL
HPE Nimble Storage - Privilege Escalation
Nov 07, 2019
CVSS 9.8
EPSS 0.00
CVE-2019-11988 CRITICAL
HPE Smart Update Manager <8.3.5 - RCE
Jun 05, 2019
CVSS 9.8
EPSS 0.01
CVE-2019-11987 HIGH
HPE Smart Update Manager <8.4 - Privilege Escalation
Jun 05, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-8936 HIGH
Netapp Clustered Data Ontap < 9.2 - NULL Pointer Dereference
May 15, 2019
CVSS 7.5
EPSS 0.24
CVE-2019-7317 MEDIUM
libpng 1.6.0-1.6.36 - Use-After-Free in png_image_free
Feb 04, 2019
CVSS 5.3
EPSS 0.01
CVE-2018-7110 MEDIUM
HPE Service Governance Framework 4.2, 4.3 - Unauthenticated Information Disclosure via Race Condition
Oct 17, 2018
CVSS 5.9
EPSS 0.00
CVE-2018-7108 MEDIUM
HPE StorageWorks XP7 Automation Director 8.5.2-02-8.6.1-00 - Authentication Bypass
Sep 27, 2018
CVSS 5.9
EPSS 0.01
CVE-2018-7107 HIGH
HPE Device Entitlement Gateway 3.2.4, 3.3, 3.3.1 - SQL Injection
Sep 27, 2018
CVSS 8.8
EPSS 0.00
CVE-2018-7094 MEDIUM
3PAR Service Processor <SP-5.0.0.0-22913 - Info Disclosure
Aug 14, 2018
CVSS 5.5
EPSS 0.00
CVE-2018-7185 HIGH
ntp 4.2.6-4.2.8 - Denial of Service via Zero-Origin Timestamp Packet
Mar 06, 2018
CVSS 7.5
EPSS 0.03
CVE-2018-7170 MEDIUM
ntp 4.2.x < 4.2.8p7 and 4.3.x < 4.3.92 - Authenticated Sybil Attack via Ephemeral Association Flood
Mar 06, 2018
CVSS 5.3
EPSS 0.01
CVE-2017-9003 HIGH
ArubaOS - Memory Corruption and Possible Remote Code Execution
Aug 06, 2018
CVSS 7.5
EPSS 0.02
CVE-2017-5689 CRITICAL KEVNUCLEI
Intel AMT Digest Authentication Bypass Scanner
May 02, 2017
CVSS 9.8
EPSS 0.94
Products
integrated_lights-out_5_firmware 17 cloudline_cl3100_gen10_server_firmware 16 cloudline_cl4100_gen10_server_firmware 16 cloudline_cl5200_gen9_server_firmware 16 cloudline_cl5800_gen10_server_firmware 16 cloudline_cl5800_gen9_server_firmware 16 arubaos-cx 14 baseboard_management_controller 14 insight_remote_support 9 storeonce_system 8 autopass_license_server 7 hpux-ntp 7 nimbleos 6 oneview_global_dashboard 6 aruba_networking_private_5g_core 5 superdome_flex_server_firmware 5 HPE System Management Homepage before v7.6 4 smart_update_manager 4 arubaos-switch 3 hf20_firmware 3 hf20c_firmware 3 hf20h_firmware 3 hf40_firmware 3 hf40c_firmware 3 hf60_firmware 3 hf60c_firmware 3 oneview 3 serviceguard_for_linux 3 sf100_firmware 3 sf300_firmware 3
Quick Filters
Critical CVEs With Exploits In CISA KEV