Skip to main content
CVE-2015-5445 HIGH This Week

Cross-site request forgery (CSRF) vulnerability in HP StoreOnce Backup system software before 3.13.1 allows remote authenticated users to hijack the authentication of unspecified victims via unknown. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

HP CSRF Storeonce Backup System Software
NVD
CVSS 3.0
8.8
EPSS
0.1%
CVE-2015-6860 HIGH PATCH This Week

HPE Network Switches with software 15.16.x and 15.17.x allow local users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2015-6859. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity.

Privilege Escalation Network Switch Software J8692A J8693A J8697A +50
NVD
CVSS 3.0
8.4
EPSS
0.0%
CVE-2015-6859 HIGH PATCH This Week

HPE Network Switches with software 15.16.x and 15.17.x allow local users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2015-6860. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Network Switch Software
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2015-6432 HIGH This Week

Cisco IOS XR 4.2.0, 4.3.0, 5.0.0, 5.1.0, 5.2.0, 5.2.2, 5.2.4, 5.3.0, and 5.3.2 does not properly restrict the number of Path Computation Elements (PCEs) for OSPF LSA opaque area updates, which allows. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Cisco Denial Of Service Ios Xr
NVD
CVSS 3.0
7.5
EPSS
0.9%
CVE-2015-5446 HIGH This Week

HP StoreOnce Backup system software before 3.13.1 allows remote attackers to execute arbitrary code via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is no authentication required. No vendor patch available.

HP RCE Storeonce Backup System Software
NVD
CVSS 3.0
7.5
EPSS
0.8%
CVE-2015-6861 HIGH This Week

HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated users to bypass an intended AssumeRole permission requirement and assume an IAM role by leveraging a policy setting for a user's. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation Eucalyptus
NVD
CVSS 3.0
7.5
EPSS
0.4%
CVE-2014-5040 MEDIUM This Month

HP Helion Eucalyptus 4.1.x before 4.1.2 and HPE Helion Eucalyptus 4.2.x before 4.2.1 allow remote authenticated users to bypass intended access restrictions and modify arbitrary (1) access key. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

HP Privilege Escalation Eucalyptus
NVD
CVSS 3.0
6.8
EPSS
0.1%
CVE-2015-5434 MEDIUM PATCH This Month

HPE Networking Products, originally branded as Comware 5, Comware 7, H3C, or HP, allow remote attackers to bypass intended access restrictions or cause a denial of service via "Virtual routing and. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

HP Privilege Escalation Denial Of Service Jg786A Hp Flexfabric 12500 4 Port 100Gbe Cfp Fd Jg787A Hp Flexfabric 12500 4 Port 100Gbe Cfp Fd Taa +85
NVD
CVSS 3.0
6.5
EPSS
0.7%
CVE-2015-5447 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in HP StoreOnce Backup system software before 3.13.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS HP Storeonce Backup System Software
NVD
CVSS 3.0
5.4
EPSS
0.2%
CVE-2015-6858 LOW Monitor

HP Insight Control server provisioning before 7.5.0 RabbitMQ allows remote attackers to obtain sensitive information via unspecified vectors. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

HP Information Disclosure Insight Management
NVD
CVSS 3.0
3.7
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy