Skip to main content
CVE-2019-5361 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5360 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5359 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5357 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.5%
CVE-2019-5354 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5353 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5351 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5350 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Deserialization Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
5.8%
CVE-2019-5349 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5348 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5346 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5345 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5344 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5343 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5342 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-5341 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.5%
CVE-2019-5340 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.5%
CVE-2019-5339 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.5%
CVE-2019-5338 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.5%
CVE-2019-11948 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-11947 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
2.9%
CVE-2019-11943 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-11942 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.6%
CVE-2019-11941 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
8.8
EPSS
3.5%
CVE-2019-1845 HIGH This Week

A vulnerability in the authentication service of the Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, Cisco TelePresence Video Communication Server (VCS), and Cisco. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Cisco Telepresence Video Communication Server Unified Communications Manager Im And Presence Service
NVD
CVSS 3.0
8.6
EPSS
4.6%
CVE-2019-11982 HIGH This Week

A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

XSS Integrated Lights Out 5 Firmware Integrated Lights Out 4 Firmware
NVD
CVSS 3.0
8.3
EPSS
2.1%
CVE-2019-11957 HIGH This Week

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Buffer Overflow RCE Memory Corruption Intelligent Management Center
NVD
CVSS 3.0
8.1
EPSS
5.2%
CVE-2019-11987 HIGH This Week

A security vulnerability in HPE Smart Update Manager (SUM) prior to v8.4 could allow local unauthorized elevation of privilege. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Smart Update Manager
NVD
CVSS 3.0
7.8
EPSS
0.3%
CVE-2019-12494 HIGH This Week

In Gardener before 0.20.0, incorrect access control in seed clusters allows information disclosure by sending HTTP GET requests from one's own shoot clusters to foreign shoot clusters. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Gardener
NVD GitHub
CVSS 3.0
7.5
EPSS
1.9%
CVE-2019-9187 HIGH This Week

ikiwiki before 3.20170111.1 and 3.2018x and 3.2019x before 3.20190228 allows SSRF via the aggregate plugin. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF Ikiwiki
NVD
CVSS 3.0
7.5
EPSS
1.7%
CVE-2019-1868 HIGH This Week

A vulnerability in the web-based management interface of Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to access sensitive system information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco Information Disclosure Webex Meetings Server
NVD
CVSS 3.1
7.5
EPSS
2.1%
CVE-2019-5355 HIGH This Week

A remote denial of service vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Intelligent Management Center
NVD
CVSS 3.0
7.5
EPSS
54.0%
CVE-2019-1861 HIGH This Week

A vulnerability in the software update feature of Cisco Industrial Network Director could allow an authenticated, remote attacker to execute arbitrary code. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco RCE Industrial Network Director
NVD
CVSS 3.1
7.2
EPSS
4.4%
CVE-2019-11983 HIGH This Week

A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier than. Rated high severity (CVSS 7.0), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Buffer Overflow Integrated Lights Out 5 Firmware Integrated Lights Out 4 Firmware
NVD
CVSS 3.0
7.0
EPSS
1.1%
CVE-2019-9755 HIGH This Week

An integer underflow issue exists in ntfs-3g 2017.3.23. Rated high severity (CVSS 7.0). No vendor patch available.

Integer Overflow RCE Buffer Overflow Ntfs 3G Enterprise Linux +4
NVD
CVSS 3.1
7.0
EPSS
0.5%
CVE-2019-11946 MEDIUM This Month

A remote credential disclosure vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Intelligent Management Center
NVD
CVSS 3.0
6.5
EPSS
1.0%
CVE-2019-12616 MEDIUM POC PATCH THREAT This Month

An issue was discovered in phpMyAdmin before 4.9.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Request Forgery (CSRF) vulnerability could allow attackers to trick authenticated users into performing unintended actions.

CSRF Phpmyadmin
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
19.2%
CVE-2019-1870 MEDIUM This Month

A vulnerability in the web-based management interface of Cisco Enterprise Chat and Email (ECE) Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Cisco Enterprise Chat And Email
NVD
CVSS 3.0
6.1
EPSS
1.2%
CVE-2019-12741 MEDIUM PATCH This Month

XSS exists in the HAPI FHIR testpage overlay module of the HAPI FHIR library before 3.8.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Java Hapi Fhir
NVD GitHub
CVSS 3.0
6.1
EPSS
1.3%
CVE-2019-9157 MEDIUM This Month

Gemalto DS3 Authentication Server 2.6.1-SP01 allows Local File Disclosure. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. No vendor patch available.

Path Traversal Ezio Ds3 Server
NVD
CVSS 3.0
5.7
EPSS
0.7%
CVE-2019-1882 MEDIUM This Month

A vulnerability in Cisco Industrial Network Director could allow an authenticated, remote attacker to conduct stored cross-site scripting (XSS) attacks. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Cisco Industrial Network Director
NVD
CVSS 3.0
5.4
EPSS
0.9%
CVE-2019-1842 MEDIUM This Month

A vulnerability in the Secure Shell (SSH) authentication function of Cisco IOS XR Software could allow an authenticated, remote attacker to successfully log in to an affected device using two. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Cisco Apple Ios Xr Firmware
NVD
CVSS 3.1
5.4
EPSS
1.2%
CVE-2019-1872 MEDIUM This Month

A vulnerability in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway Series software could allow an unauthenticated, remote attacker to cause an affected system to send. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF Cisco Telepresence Video Communication Server
NVD
CVSS 3.0
5.3
EPSS
1.5%
CVE-2019-5392 MEDIUM POC This Month

A disclosure of information vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Intelligent Management Center
NVD Exploit-DB
CVSS 3.0
5.3
EPSS
7.1%
CVE-2019-5394 MEDIUM This Month

The HPE Nonstop Maintenance Entity family of products are vulnerable to local disclosure of information, such as system layout and configuration. Rated medium severity (CVSS 5.1). No vendor patch available.

Information Disclosure Blade Maintenance Entity Integrated Maintenance Entity Maintenance Entity
NVD
CVSS 3.0
5.1
EPSS
0.3%
CVE-2019-10637 MEDIUM This Month

Marvell SSD Controller (88SS1074, 88SS1079, 88SS1080, 88SS1093, 88SS1092, 88SS1095, 88SS9174, 88SS9175, 88SS9187, 88SS9188, 88SS9189, 88SS9190, 88SS1085, 88SS1087, 88SS1090, 88SS1100, 88SS1084,. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass 88Ss1074 Firmware 88Ss1079 Firmware 88Ss1080 Firmware 88Ss1093 Firmware +15
NVD
CVSS 3.0
4.6
EPSS
0.3%
CVE-2019-1880 MEDIUM This Month

A vulnerability in the BIOS upgrade utility of Cisco Unified Computing System (UCS) C-Series Rack Servers could allow an authenticated, local attacker to install compromised BIOS firmware on an. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Cisco Unified Computing System Server Firmware
NVD
CVSS 3.0
4.4
EPSS
0.2%
CVE-2019-5393 MEDIUM This Month

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Intelligent Management Center
NVD
CVSS 3.0
4.3
EPSS
1.9%
Prev Page 3 of 3

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy