Vulnerabilities > HP > Data Protector
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-15 | CVE-2017-5809 | Permission Issues vulnerability in HP Data Protector A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found. | 4.9 |
| 2018-02-15 | CVE-2017-5808 | Improper Input Validation vulnerability in HP Data Protector A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found. | 7.8 |
| 2018-02-15 | CVE-2017-5807 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP Data Protector A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found. | 10.0 |
| 2016-04-21 | CVE-2016-2008 | Remote Code Execution vulnerability in HP Data Protector HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors. | 7.5 |
| 2016-04-21 | CVE-2016-2007 | Request Remote Code Execution vulnerability in HP Data Protector HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3354. | 10.0 |
| 2016-04-21 | CVE-2016-2006 | Request Remote Code Execution vulnerability in HP Data Protector HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3353. | 10.0 |
| 2016-04-21 | CVE-2016-2005 | Request Remote Code Execution vulnerability in HP Data Protector HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3352. | 10.0 |
| 2016-04-21 | CVE-2016-2004 | Missing Authentication for Critical Function vulnerability in HP Data Protector HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allow remote attackers to execute arbitrary code via unspecified vectors related to lack of authentication. | 9.3 |
| 2011-08-01 | CVE-2011-2399 | Denial of Service vulnerability in HP OpenView Storage Data Protector 6.10/6.11 Unspecified vulnerability in the Media Management Daemon (mmd) in HP Data Protector 6.11 and earlier allows remote attackers to cause a denial of service via unknown vectors. | 7.8 |
| 2011-02-09 | CVE-2011-0924 | Improper Input Validation vulnerability in HP Data Protector The client in HP Data Protector does not verify the contents of files associated with the EXEC_CMD command, which allows remote attackers to execute arbitrary script code by providing this code with a trusted filename, as demonstrated by omni_chk_ds.sh. | 10.0 |