Vulnerabilities in Hewlett Packard Enterprise (HPE)
450 resultsCVE-2025-37164CRITICALA remote code execution issue exists in HPE OneView.EPSS 89.7%KEVCVE-2024-53675HIGHAn XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certainEPSS 83.9%CVE-2024-53676CRITICALA directory traversal vulnerability in Hewlett Packard Enterprise Insight Remote Support may allow remote code execution.EPSS 51.3%CVE-2024-53674HIGHAn XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certainEPSS 47.4%CVE-2024-26304CRITICALThere is a buffer overflow vulnerability in the underlying L2/L3 Management service that could lead to unauthenticated remote code executionEPSS 44.0%CVE-2024-26305CRITICALThere is a buffer overflow vulnerability in the underlying Utility daemon that could lead to unauthenticated remote code execution by sendinEPSS 15.2%CVE-2024-33512CRITICALThere is a buffer overflow vulnerability in the underlying Local User Authentication Database service that could lead to unauthenticated remEPSS 14.6%CVE-2024-33511CRITICALThere is a buffer overflow vulnerability in the underlying Automatic Reporting service that could lead to unauthenticated remote code executEPSS 14.6%CVE-2019-5396—A remote authentication bypass vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1.EPSS 5.1%CVE-2019-5402—A remote authorization bypass vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5EPSS 4.3%CVE-2019-5397—A remote bypass of security restrictions vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1.EPSS 4.3%CVE-2022-37932HIGHA potential security vulnerability has been identified in Hewlett Packard Enterprise OfficeConnect 1820, 1850, and 1920S Network switches. TEPSS 2.6%CVE-2019-5399—A remote gain authorized access vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1.EPSS 2.4%CVE-2019-5395—A remote arbitrary file upload vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1.EPSS 2.3%CVE-2023-45616CRITICALThere is a buffer overflow vulnerability in the underlying AirWave client service that could lead to unauthenticated remote code execution bEPSS 2.1%CVE-2023-45614CRITICALThere are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending EPSS 2.1%CVE-2023-45615CRITICALThere are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending EPSS 2.1%CVE-2023-22779CRITICALUnauthenticated Buffer Overflow Vulnerabilities in Services Accessed by the PAPI ProtocolEPSS 2.1%CVE-2023-22786CRITICALUnauthenticated Buffer Overflow Vulnerabilities in Services Accessed by the PAPI ProtocolEPSS 2.1%CVE-2023-22783CRITICALUnauthenticated Buffer Overflow Vulnerabilities in Services Accessed by the PAPI ProtocolEPSS 2.1%