Skip to main content

3Par Service Processor Firmware

8 CVEs product

Monthly

CVE-2024-22442 CRITICAL Act Now

The vulnerability could be remotely exploited to bypass authentication. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass 3Par Service Processor Firmware
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2019-5400 MEDIUM This Month

A remote session reuse vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Session Fixation Information Disclosure 3Par Service Processor Firmware
NVD
CVSS 3.0
6.3
EPSS
0.9%
CVE-2019-5399 CRITICAL Act Now

A remote gain authorized access vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure 3Par Service Processor Firmware
NVD
CVSS 3.0
9.4
EPSS
2.4%
CVE-2019-5398 MEDIUM This Month

A remote multiple multiple cross-site vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS 3Par Service Processor Firmware
NVD
CVSS 3.0
5.4
EPSS
0.7%
CVE-2019-5397 CRITICAL Act Now

A remote bypass of security restrictions vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS 3Par Service Processor Firmware
NVD
CVSS 3.0
9.4
EPSS
4.3%
CVE-2019-5396 CRITICAL Act Now

A remote authentication bypass vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass 3Par Service Processor Firmware
NVD
CVSS 3.0
9.4
EPSS
5.1%
CVE-2019-5395 HIGH This Week

A remote arbitrary file upload vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload 3Par Service Processor Firmware
NVD
CVSS 3.0
8.8
EPSS
2.3%
CVE-2019-11991 CRITICAL Act Now

HPE has identified a vulnerability in HPE 3PAR Service Processor (SP) version 4.1 through 4.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure 3Par Service Processor Firmware
NVD
CVSS 3.0
9.8
EPSS
4.7%
EPSS 1% CVSS 9.8
CRITICAL Act Now

The vulnerability could be remotely exploited to bypass authentication. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass 3Par Service Processor Firmware
NVD
EPSS 1% CVSS 6.3
MEDIUM This Month

A remote session reuse vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Session Fixation Information Disclosure 3Par Service Processor Firmware
NVD
EPSS 2% CVSS 9.4
CRITICAL Act Now

A remote gain authorized access vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure 3Par Service Processor Firmware
NVD
EPSS 1% CVSS 5.4
MEDIUM This Month

A remote multiple multiple cross-site vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS 3Par Service Processor Firmware
NVD
EPSS 4% CVSS 9.4
CRITICAL Act Now

A remote bypass of security restrictions vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS 3Par Service Processor Firmware
NVD
EPSS 5% CVSS 9.4
CRITICAL Act Now

A remote authentication bypass vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass 3Par Service Processor Firmware
NVD
EPSS 2% CVSS 8.8
HIGH This Week

A remote arbitrary file upload vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload 3Par Service Processor Firmware
NVD
EPSS 5% CVSS 9.8
CRITICAL Act Now

HPE has identified a vulnerability in HPE 3PAR Service Processor (SP) version 4.1 through 4.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure 3Par Service Processor Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy