Vulnerabilities > HP > Oneview
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-23 | CVE-2023-6573 | Unspecified vulnerability in HP Oneview HPE OneView may have a missing passphrase during restore. | 5.5 |
| 2024-01-23 | CVE-2023-50274 | Command Injection vulnerability in HP Oneview HPE OneView may allow command injection with local privilege escalation. | 7.8 |
| 2024-01-23 | CVE-2023-50275 | Improper Authentication vulnerability in HP Oneview HPE OneView may allow clusterService Authentication Bypass resulting in denial of service. | 7.5 |
| 2023-09-14 | CVE-2023-30909 | Unspecified vulnerability in HP Oneview A remote authentication bypass issue exists in some OneView APIs. | 9.8 |
| 2023-09-07 | CVE-2023-30908 | Unspecified vulnerability in HP Oneview A remote authentication bypass issue exists in a OneView API. | 9.8 |
| 2023-04-25 | CVE-2023-28084 | Insufficiently Protected Credentials vulnerability in multiple products HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens | 5.5 |
| 2023-04-25 | CVE-2023-28086 | Unspecified vulnerability in HP Oneview An HPE OneView appliance dump may expose proxy credential settings | 5.5 |
| 2023-04-25 | CVE-2023-28087 | Unspecified vulnerability in HP Oneview An HPE OneView appliance dump may expose OneView user accounts | 5.5 |
| 2023-04-25 | CVE-2023-28088 | Insufficiently Protected Credentials vulnerability in HP Oneview An HPE OneView appliance dump may expose SAN switch administrative credentials | 7.8 |
| 2023-04-25 | CVE-2023-28089 | Insufficiently Protected Credentials vulnerability in HP Oneview An HPE OneView appliance dump may expose FTP credentials for c7000 Interconnect Modules | 7.1 |