9.23

DATE	CVE	VULNERABILITY TITLE	RISK
2016-05-07	CVE-2016-2014	Improper Access Control vulnerability in HP Network Node Manager I HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to modify data or cause a denial of service via unspecified vectors. network low complexity hp CWE-284	8.5
2016-05-07	CVE-2016-2013	Information Exposure vulnerability in HP Network Node Manager I HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to obtain sensitive information via unspecified vectors. network low complexity hp CWE-200	4.0
2016-05-07	CVE-2016-2012	Improper Authentication vulnerability in HP Network Node Manager I HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote attackers to bypass authentication via unspecified vectors. network low complexity hp CWE-287	7.5
2016-05-07	CVE-2016-2011	Cross-site Scripting vulnerability in HP Network Node Manager I Cross-site scripting (XSS) vulnerability in HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-2010. network hp CWE-79	3.5
2016-05-07	CVE-2016-2010	Cross-site Scripting vulnerability in HP Network Node Manager I Cross-site scripting (XSS) vulnerability in HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-2011. network hp CWE-79	3.5
2016-05-07	CVE-2016-2009	Improper Access Control vulnerability in HP Network Node Manager I HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library. network low complexity hp CWE-284	6.5