Vulnerabilities > HP > Oneview > 5.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-25 | CVE-2023-28090 | Insufficiently Protected Credentials vulnerability in HP Oneview An HPE OneView appliance dump may expose SNMPv3 read credentials | 5.5 |
| 2022-05-17 | CVE-2022-28616 | Server-Side Request Forgery (SSRF) vulnerability in HP Oneview A remote server-side request forgery (ssrf) vulnerability was discovered in HPE OneView version(s): Prior to 7.0. | 7.5 |
| 2022-05-17 | CVE-2022-23706 | Cross-site Scripting vulnerability in HP Oneview A remote cross-site scripting (xss) vulnerability was discovered in HPE OneView version(s): Prior to 7.0. | 4.3 |
| 2022-05-17 | CVE-2022-28617 | Unspecified vulnerability in HP Oneview A remote bypass security restrictions vulnerability was discovered in HPE OneView version(s): Prior to 7.0. | 9.8 |
| 2022-04-04 | CVE-2022-23697 | Cross-site Scripting vulnerability in HP Oneview A remote cross-site scripting (xss) vulnerability was discovered in HPE OneView version(s): Prior to 6.6. | 4.3 |
| 2022-04-04 | CVE-2022-23698 | Unspecified vulnerability in HP Oneview A remote unauthenticated disclosure of information vulnerability was discovered in HPE OneView version(s): Prior to 6.6. | 5.0 |
| 2022-04-04 | CVE-2022-23699 | Unspecified vulnerability in HP Oneview A local authentication restriction bypass vulnerability was discovered in HPE OneView version(s): Prior to 6.6. | 7.8 |
| 2022-04-04 | CVE-2022-23700 | Unspecified vulnerability in HP Oneview A local unauthorized read access to files vulnerability was discovered in HPE OneView version(s): Prior to 6.6. | 5.5 |
| 2020-11-06 | CVE-2020-7198 | Improper Privilege Management vulnerability in HP Oneview, Synergy Composer and Synergy Composer 2 There is a remote escalation of privilege possible for a malicious user that has a OneView account in OneView and Synergy Composer. | 6.5 |