Skip to main content

HP

651 CVEs vendor

Monthly

CVE-2012-2003 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in HP Insight Management Agents before 9.0.0.0 on Windows Server 2003 and 2008 allows remote attackers to hijack the authentication of unspecified. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF HP Microsoft Insight Management Agents
NVD
CVSS 2.0
6.8
EPSS
0.3%
CVE-2012-2002 HIGH This Week

Open redirect vulnerability in HP SNMP Agents for Linux before 9.0.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable. No vendor patch available.

HP Open Redirect Snmp Agents For Linux
NVD
CVSS 2.0
8.3
EPSS
1.2%
CVE-2012-2001 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in HP SNMP Agents for Linux before 9.0.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

HP XSS Snmp Agents For Linux
NVD
CVSS 2.0
4.3
EPSS
0.6%
CVE-2012-2000 HIGH This Week

Multiple unspecified vulnerabilities in HP System Health Application and Command Line Utilities before 9.0.0 allow remote attackers to execute arbitrary code via unknown vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

HP RCE System Health Application And Command Line Utilities
NVD
CVSS 2.0
7.5
EPSS
6.6%
CVE-2012-0134 MEDIUM This Month

Unspecified vulnerability in HP OpenVMS 7.3-2 on the Alpha platform, 8.3 and 8.4 on the Alpha and IA64 platforms, and 8.3-1h1 on the IA64 platform allows local users to cause a denial of service via. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service HP Openvms
NVD
CVSS 2.0
4.9
EPSS
0.1%
CVE-2012-1993 LOW Monitor

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows local users to modify data or obtain sensitive information via unknown vectors. Rated low severity (CVSS 3.2), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure HP System Management Homepage
NVD
CVSS 2.0
3.2
EPSS
0.1%
CVE-2012-0135 LOW Monitor

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows remote authenticated users to cause a denial of service via unknown vectors. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service HP System Management Homepage
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2012-0133 LOW Monitor

HP ProCurve 5400 zl switches with certain serial numbers include a compact flash card that contains an unspecified virus, which might allow user-assisted remote attackers to execute arbitrary code on. Rated low severity (CVSS 3.7). No vendor patch available.

HP RCE Procurve Switch 5400Zl Procurve Switch 5400Zl Management Module Procurve Switch 5406 44G Poe 4Sfpzl +11
NVD
CVSS 2.0
3.7
EPSS
1.1%
CVE-2012-0131 CRITICAL Act Now

Distributed Computing Environment (DCE) 1.8 and 1.9 on HP HP-UX B.11.11 and B.11.23 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 15.1% and no vendor patch available.

Denial Of Service HP Distributed Computing Environment Hp Ux
NVD
CVSS 2.0
10.0
EPSS
15.1%
CVE-2012-0130 MEDIUM This Month

HP Onboard Administrator (OA) before 3.50 allows remote attackers to obtain sensitive information via unspecified vectors. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure HP Onboard Administrator
NVD
CVSS 2.0
5.0
EPSS
1.2%
CVE-2012-0129 HIGH This Week

HP Onboard Administrator (OA) before 3.50 allows remote attackers to bypass intended access restrictions and execute arbitrary code via unspecified vectors. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation HP RCE Onboard Administrator
NVD
CVSS 2.0
7.6
EPSS
6.9%
CVE-2012-0128 MEDIUM This Month

HP Onboard Administrator (OA) before 3.50 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure HP Onboard Administrator
NVD
CVSS 2.0
5.8
EPSS
0.7%
CVE-2012-0132 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 9.01 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

HP XSS Business Availability Center
NVD
CVSS 2.0
4.3
EPSS
0.7%
CVE-2012-0127 CRITICAL Emergency

Unspecified vulnerability in HP Performance Manager 9.00 allows remote attackers to execute arbitrary code via unknown vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 38.6% and no vendor patch available.

HP RCE Performance Manager
NVD
CVSS 2.0
10.0
EPSS
38.6%
CVE-2012-0126 MEDIUM This Month

Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.11 and 11.23 allows remote attackers to obtain access to diagnostic information via unknown vectors, a related issue to. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure HP Hp Ux
NVD
CVSS 2.0
5.8
EPSS
0.8%
CVE-2012-0125 LOW Monitor

Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.31 allows local users to obtain access to diagnostic information via unknown vectors, a related issue to CVE-2012-0126. Rated low severity (CVSS 3.3). No vendor patch available.

Information Disclosure HP Hp Ux
NVD
CVSS 2.0
3.3
EPSS
0.2%
CVE-2012-0124 CRITICAL POC THREAT Emergency

Unspecified vulnerability in HP Data Protector Express (aka DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 73.7%.

Denial Of Service HP RCE Data Protector Express
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
73.7%
Threat
5.7
CVE-2012-0123 CRITICAL Act Now

Unspecified vulnerability in HP Data Protector Express (aka DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 18.0% and no vendor patch available.

Denial Of Service HP RCE Data Protector Express
NVD
CVSS 2.0
10.0
EPSS
18.0%
CVE-2012-0122 CRITICAL Act Now

Unspecified vulnerability in HP Data Protector Express (aka DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 16.3% and no vendor patch available.

Denial Of Service HP RCE Data Protector Express
NVD
CVSS 2.0
10.0
EPSS
16.3%
CVE-2012-0121 CRITICAL Act Now

Unspecified vulnerability in HP Data Protector Express (aka DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 16.3% and no vendor patch available.

Denial Of Service HP RCE Data Protector Express
NVD
CVSS 2.0
10.0
EPSS
16.3%
CVE-2012-0697 CRITICAL Act Now

HP StorageWorks P2000 G3 MSA array systems have a default account, which makes it easier for remote attackers to perform administrative tasks via unspecified vectors, a different vulnerability than. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

HP Path Traversal Storageworks P2000 G3 Msa
NVD
CVSS 2.0
10.0
EPSS
1.9%
EPSS 0% CVSS 6.8
MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in HP Insight Management Agents before 9.0.0.0 on Windows Server 2003 and 2008 allows remote attackers to hijack the authentication of unspecified. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF HP Microsoft +1
NVD
EPSS 1% CVSS 8.3
HIGH This Week

Open redirect vulnerability in HP SNMP Agents for Linux before 9.0.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable. No vendor patch available.

HP Open Redirect Snmp Agents For Linux
NVD
EPSS 1% CVSS 4.3
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in HP SNMP Agents for Linux before 9.0.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

HP XSS Snmp Agents For Linux
NVD
EPSS 7% CVSS 7.5
HIGH This Week

Multiple unspecified vulnerabilities in HP System Health Application and Command Line Utilities before 9.0.0 allow remote attackers to execute arbitrary code via unknown vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

HP RCE System Health Application And Command Line Utilities
NVD
EPSS 0% CVSS 4.9
MEDIUM This Month

Unspecified vulnerability in HP OpenVMS 7.3-2 on the Alpha platform, 8.3 and 8.4 on the Alpha and IA64 platforms, and 8.3-1h1 on the IA64 platform allows local users to cause a denial of service via. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service HP Openvms
NVD
EPSS 0% CVSS 3.2
LOW Monitor

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows local users to modify data or obtain sensitive information via unknown vectors. Rated low severity (CVSS 3.2), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure HP System Management Homepage
NVD
EPSS 0% CVSS 3.5
LOW Monitor

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows remote authenticated users to cause a denial of service via unknown vectors. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service HP System Management Homepage
NVD
EPSS 1% CVSS 3.7
LOW Monitor

HP ProCurve 5400 zl switches with certain serial numbers include a compact flash card that contains an unspecified virus, which might allow user-assisted remote attackers to execute arbitrary code on. Rated low severity (CVSS 3.7). No vendor patch available.

HP RCE Procurve Switch 5400Zl +13
NVD
EPSS 15% CVSS 10.0
CRITICAL Act Now

Distributed Computing Environment (DCE) 1.8 and 1.9 on HP HP-UX B.11.11 and B.11.23 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 15.1% and no vendor patch available.

Denial Of Service HP Distributed Computing Environment +1
NVD
EPSS 1% CVSS 5.0
MEDIUM This Month

HP Onboard Administrator (OA) before 3.50 allows remote attackers to obtain sensitive information via unspecified vectors. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure HP Onboard Administrator
NVD
EPSS 7% CVSS 7.6
HIGH This Week

HP Onboard Administrator (OA) before 3.50 allows remote attackers to bypass intended access restrictions and execute arbitrary code via unspecified vectors. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation HP RCE +1
NVD
EPSS 1% CVSS 5.8
MEDIUM This Month

HP Onboard Administrator (OA) before 3.50 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure HP Onboard Administrator
NVD
EPSS 1% CVSS 4.3
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 9.01 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

HP XSS Business Availability Center
NVD
EPSS 39% CVSS 10.0
CRITICAL Emergency

Unspecified vulnerability in HP Performance Manager 9.00 allows remote attackers to execute arbitrary code via unknown vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 38.6% and no vendor patch available.

HP RCE Performance Manager
NVD
EPSS 1% CVSS 5.8
MEDIUM This Month

Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.11 and 11.23 allows remote attackers to obtain access to diagnostic information via unknown vectors, a related issue to. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure HP Hp Ux
NVD
EPSS 0% CVSS 3.3
LOW Monitor

Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.31 allows local users to obtain access to diagnostic information via unknown vectors, a related issue to CVE-2012-0126. Rated low severity (CVSS 3.3). No vendor patch available.

Information Disclosure HP Hp Ux
NVD
EPSS 74% 5.7 CVSS 10.0
CRITICAL POC THREAT Emergency

Unspecified vulnerability in HP Data Protector Express (aka DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 73.7%.

Denial Of Service HP RCE +1
NVD Exploit-DB
EPSS 18% CVSS 10.0
CRITICAL Act Now

Unspecified vulnerability in HP Data Protector Express (aka DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 18.0% and no vendor patch available.

Denial Of Service HP RCE +1
NVD
EPSS 16% CVSS 10.0
CRITICAL Act Now

Unspecified vulnerability in HP Data Protector Express (aka DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 16.3% and no vendor patch available.

Denial Of Service HP RCE +1
NVD
EPSS 16% CVSS 10.0
CRITICAL Act Now

Unspecified vulnerability in HP Data Protector Express (aka DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 16.3% and no vendor patch available.

Denial Of Service HP RCE +1
NVD
EPSS 2% CVSS 10.0
CRITICAL Act Now

HP StorageWorks P2000 G3 MSA array systems have a default account, which makes it easier for remote attackers to perform administrative tasks via unspecified vectors, a different vulnerability than. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

HP Path Traversal Storageworks P2000 G3 Msa
NVD
Prev Page 8 of 8

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy