Vulnerabilities in Hewlett Packard Enterprise

311 results
CVE-2017-5785A remote information disclosure vulnerability in HPE Matrix Operating Environment version v7.6 was found.EPSS 1.5%CVE-2022-37898HIGHAuthenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilitieEPSS 1.4%CVE-2016-8520HPE Helion Eucalyptus v4.3.0 and earlier does not correctly check IAM user's permissions for accessing versioned objects and ACLs. In some cEPSS 1.4%CVE-2017-8959An Authentication Bypass vulnerability in HPE MSA 1040 and HPE MSA 2040 SAN Storage in version GL220P008 and earlier and was found.EPSS 1.4%CVE-2018-7067A Remote Authentication bypass in Aruba ClearPass Policy Manager leads to complete cluster compromise. An authentication flaw in all versionEPSS 1.3%CVE-2016-8534A remote privilege elevation vulnerability in HPE Matrix Operating Environment version 7.6 was found.EPSS 1.2%CVE-2017-8968A remote execution of arbitrary code vulnerability has been identified in HPE RESTful Interface Tool 1.5, 2.0 (hprest-1.5-79.x86_64.rpm, iloEPSS 1.2%CVE-2024-51767HIGHAn authentication bypass vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.17.EPSS 1.1%CVE-2016-4392A remote cross site scripting vulnerability has been identified in HP Business Service Management software v9.1x, v9.20 - v9.25IP1.EPSS 1.1%CVE-2016-8522A cross-site scripting vulnerability in HPE Diagnostics version 9.24 IP1, 9.26 , 9.26IP1 was found.EPSS 1.1%CVE-2016-4397A local code execution security vulnerability was identified in HP Network Node Manager i (NNMi) v10.00, v10.10 and v10.20 Software.EPSS 1.0%CVE-2023-50275HIGHHPE OneView may allow clusterService Authentication Bypass resulting in denial of service.EPSS 1.0%CVE-2018-7109HPE has addressed a remote arbitrary file modification vulnerability in HPE enhanced Internet Usage Manager (eIUM) v9.0FP1 with the cumulatiEPSS 1.0%CVE-2017-5784A missing HSTS Header vulnerability in HPE Matrix Operating Environment version v7.6 was found.EPSS 1.0%CVE-2017-5782A missing HSTS Header vulnerability in HPE Matrix Operating Environment version v7.6 was found.EPSS 1.0%CVE-2018-7068HPE has identified a remote HOST header attack vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issuEPSS 1.0%CVE-2018-7075A remote cross-site scripting (XSS) vulnerability was identified in HPE Intelligent Management Center (iMC) PLAT version v7.3 (E0506). The vEPSS 1.0%CVE-2018-7079Aruba ClearPass Policy Manager guest authorization failure. Certain administrative operations in ClearPass Guest do not properly enforce autEPSS 0.9%CVE-2018-7091HPE XP P9000 Command View Advanced Edition Software (CVAE) has open URL redirection vulnerability in versions 7.0.0-00 to earlier than 8.60-EPSS 0.9%CVE-2018-7090HPE XP P9000 Command View Advanced Edition Software (CVAE) has local and remote cross site scripting vulnerability in versions 7.0.0-00 to eEPSS 0.9%