Vulnerabilities > HP

DATE CVE VULNERABILITY TITLE RISK
2022-05-17 CVE-2022-28616 Server-Side Request Forgery (SSRF) vulnerability in HP Oneview
A remote server-side request forgery (ssrf) vulnerability was discovered in HPE OneView version(s): Prior to 7.0.
network
low complexity
hp CWE-918
7.5
2022-05-17 CVE-2022-23706 Cross-site Scripting vulnerability in HP Oneview
A remote cross-site scripting (xss) vulnerability was discovered in HPE OneView version(s): Prior to 7.0.
network
hp CWE-79
4.3
2022-05-17 CVE-2022-28617 Improper Authentication vulnerability in HP Oneview
A remote bypass security restrictions vulnerability was discovered in HPE OneView version(s): Prior to 7.0.
network
low complexity
hp CWE-287
7.5
2022-05-09 CVE-2022-23704 Unspecified vulnerability in HP Integrated Lights-Out 4 2.78
A potential security vulnerability has been identified in Integrated Lights-Out 4 (iLO 4).
network
low complexity
hp
5.0
2022-04-27 CVE-2022-27239 Out-of-bounds Write vulnerability in multiple products
In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.
local
low complexity
samba debian suse hp CWE-787
7.2
2022-04-04 CVE-2022-23697 Cross-site Scripting vulnerability in HP Oneview
A remote cross-site scripting (xss) vulnerability was discovered in HPE OneView version(s): Prior to 6.6.
network
hp CWE-79
4.3
2022-04-04 CVE-2022-23698 Unspecified vulnerability in HP Oneview
A remote unauthenticated disclosure of information vulnerability was discovered in HPE OneView version(s): Prior to 6.6.
network
low complexity
hp
5.0
2022-04-04 CVE-2022-23699 Improper Authentication vulnerability in HP Oneview
A local authentication restriction bypass vulnerability was discovered in HPE OneView version(s): Prior to 6.6.
local
low complexity
hp CWE-287
4.6
2022-04-04 CVE-2022-23700 Incorrect Authorization vulnerability in HP Oneview
A local unauthorized read access to files vulnerability was discovered in HPE OneView version(s): Prior to 6.6.
local
low complexity
hp CWE-863
2.1
2022-03-23 CVE-2022-24291 Unspecified vulnerability in HP products
Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
network
low complexity
hp
7.8