Skip to main content

San Iq

8 CVEs product

Monthly

CVE-2013-2352 CRITICAL Act Now

LeftHand OS (aka SAN iQ) 10.5 and earlier on HP StoreVirtual Storage devices does not provide a mechanism for disabling the HP Support challenge-response root-login feature, which makes it easier for. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

HP Authentication Bypass San Iq
NVD
CVSS 2.0
9.4
EPSS
2.3%
CVE-2012-3285 CRITICAL Act Now

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1513. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 26.9% and no vendor patch available.

HP RCE San Iq Lefthand P4000 Virtual San Appliance
NVD
CVSS 2.0
10.0
EPSS
26.9%
CVE-2012-3284 CRITICAL Act Now

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1512. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 26.9% and no vendor patch available.

HP RCE San Iq Lefthand P4000 Virtual San Appliance
NVD
CVSS 2.0
10.0
EPSS
26.9%
CVE-2012-3283 CRITICAL Act Now

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1511. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 23.2% and no vendor patch available.

HP RCE San Iq Lefthand P4000 Virtual San Appliance
NVD
CVSS 2.0
10.0
EPSS
23.2%
CVE-2012-3282 CRITICAL POC THREAT Emergency

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1468. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 35.1%.

HP RCE San Iq Lefthand P4000 Virtual San Appliance
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
35.1%
Threat
4.6
CVE-2012-4362 MEDIUM POC THREAT This Month

hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 22.1%.

HP Authentication Bypass San Iq
NVD Exploit-DB
CVSS 2.0
4.0
EPSS
22.1%
CVE-2012-4361 HIGH POC THREAT Act Now

lhn/public/network/ping in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the second parameter. Rated high severity (CVSS 7.7), this vulnerability is low attack complexity. Public exploit code available and EPSS exploitation probability 44.8%.

Command Injection HP San Iq
NVD Exploit-DB
CVSS 2.0
7.7
EPSS
44.8%
Threat
4.4
CVE-2012-2986 HIGH POC This Week

lhn/public/network/ping in HP SAN/iQ 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) first, (2) third, or (3). Rated high severity (CVSS 7.7), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Command Injection HP San Iq
NVD Exploit-DB
CVSS 2.0
7.7
EPSS
5.2%
EPSS 2% CVSS 9.4
CRITICAL Act Now

LeftHand OS (aka SAN iQ) 10.5 and earlier on HP StoreVirtual Storage devices does not provide a mechanism for disabling the HP Support challenge-response root-login feature, which makes it easier for. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

HP Authentication Bypass San Iq
NVD
EPSS 27% CVSS 10.0
CRITICAL Act Now

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1513. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 26.9% and no vendor patch available.

HP RCE San Iq +1
NVD
EPSS 27% CVSS 10.0
CRITICAL Act Now

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1512. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 26.9% and no vendor patch available.

HP RCE San Iq +1
NVD
EPSS 23% CVSS 10.0
CRITICAL Act Now

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1511. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 23.2% and no vendor patch available.

HP RCE San Iq +1
NVD
EPSS 35% 4.6 CVSS 10.0
CRITICAL POC THREAT Emergency

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1468. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 35.1%.

HP RCE San Iq +1
NVD Exploit-DB
EPSS 22% CVSS 4.0
MEDIUM POC THREAT This Month

hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 22.1%.

HP Authentication Bypass San Iq
NVD Exploit-DB
EPSS 45% 4.4 CVSS 7.7
HIGH POC THREAT Act Now

lhn/public/network/ping in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the second parameter. Rated high severity (CVSS 7.7), this vulnerability is low attack complexity. Public exploit code available and EPSS exploitation probability 44.8%.

Command Injection HP San Iq
NVD Exploit-DB
EPSS 5% CVSS 7.7
HIGH POC This Week

lhn/public/network/ping in HP SAN/iQ 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) first, (2) third, or (3). Rated high severity (CVSS 7.7), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Command Injection HP San Iq
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy