Vulnerabilities in Hewlett Packard Enterprise (HPE)
450 resultsCVE-2026-44859HIGHAuthenticated Stack-Based Buffer Overflow in PAPI ServicesEPSS 0.4%CVE-2025-23053MEDIUMAuthenticated privilege escalation via broken access controlEPSS 0.4%CVE-2025-23054MEDIUMAuthenticated Response Manipulation allows Unauthorized Actions in Management InterfaceEPSS 0.4%CVE-2024-24452MEDIUMAn invalid memory access when handling the ProtocolIE_ID field of E-RAB Release Indication messages in Athonet vEPC MME v11.4.0 allows attacEPSS 0.4%CVE-2024-26300MEDIUMA vulnerability in the guest interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a stored cross-siEPSS 0.4%CVE-2024-26299MEDIUMA vulnerability in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a EPSS 0.4%CVE-2022-37927MEDIUMURL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hewlett Packard Enterprise HPE OneView Global Dashboard (OVGD).
EPSS 0.4%CVE-2024-26302MEDIUMA vulnerability in the web-based management interface of ClearPass Policy Manager could allow a remote attacker authenticated with low priviEPSS 0.4%CVE-2026-44858HIGHAuthenticated Stack-Based Buffer Overflow in PAPI ServicesEPSS 0.4%CVE-2026-44857HIGHAuthenticated Stack-Based Buffer Overflow in PAPI ServicesEPSS 0.4%CVE-2026-44856HIGHAuthenticated Stack-Based Buffer Overflow in PAPI ServicesEPSS 0.4%CVE-2026-44855HIGHAuthenticated Stack-Based Buffer Overflow in PAPI ServicesEPSS 0.4%CVE-2025-37143MEDIUMAuthenticated Arbitrary File Download Vulnerability in CLI Binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor Web Interface (Physical Access Required)EPSS 0.3%CVE-2024-24454MEDIUMAn invalid memory access when handling the ProtocolIE_ID field of E-RAB Modify Request messages in Athonet vEPC MME v11.4.0 allows attackersEPSS 0.3%CVE-2024-24453MEDIUMAn invalid memory access when handling the ProtocolIE_ID field of E-RAB NotToBeModifiedBearerModInd information element in Athonet vEPC MME EPSS 0.3%CVE-2024-24457MEDIUMAn invalid memory access when handling the ProtocolIE_ID field of E-RAB Setup List Context SURes messages in Athonet vEPC MME v11.4.0 allowsEPSS 0.3%CVE-2024-24455MEDIUMAn invalid memory access when handling a UE Context Release message containing an invalid UE identifier in Athonet vEPC MME v11.4.0 allows aEPSS 0.3%CVE-2024-24459MEDIUMAn invalid memory access when handling the ProtocolIE_ID field of S1Setup Request messages in Athonet vEPC MME v11.4.0 allows attackers to cEPSS 0.3%CVE-2024-24458MEDIUMAn invalid memory access when handling the ENB Configuration Transfer messages containing invalid PLMN Identities in Athonet vEPC MME v11.4.EPSS 0.3%CVE-2025-37165HIGHExposure of VLAN information in unintended network interfacesEPSS 0.3%