Vulnerabilities > HP > Oneview > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-18 | CVE-2024-42508 | Unspecified vulnerability in HP Oneview This vulnerability could be exploited, leading to unauthorized disclosure of information to authenticated users. | 5.5 |
| 2024-01-23 | CVE-2023-6573 | Unspecified vulnerability in HP Oneview HPE OneView may have a missing passphrase during restore. | 5.5 |
| 2023-04-25 | CVE-2023-28084 | Insufficiently Protected Credentials vulnerability in multiple products HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens | 5.5 |
| 2023-04-25 | CVE-2023-28086 | Unspecified vulnerability in HP Oneview An HPE OneView appliance dump may expose proxy credential settings | 5.5 |
| 2023-04-25 | CVE-2023-28087 | Unspecified vulnerability in HP Oneview An HPE OneView appliance dump may expose OneView user accounts | 5.5 |
| 2023-04-25 | CVE-2023-28090 | Insufficiently Protected Credentials vulnerability in HP Oneview An HPE OneView appliance dump may expose SNMPv3 read credentials | 5.5 |
| 2023-04-14 | CVE-2023-28091 | Unspecified vulnerability in HP Oneview HPE OneView virtual appliance "Migrate server hardware" option may expose sensitive information in an HPE OneView support dump | 5.5 |
| 2022-08-31 | CVE-2022-28625 | Information Exposure Through Log Files vulnerability in HP Oneview A local disclosure of sensitive information vulnerability was discovered in HPE OneView version(s): Prior to 7.0 or 6.60.01. | 5.5 |
| 2022-05-17 | CVE-2022-23706 | Cross-site Scripting vulnerability in HP Oneview A remote cross-site scripting (xss) vulnerability was discovered in HPE OneView version(s): Prior to 7.0. | 6.1 |
| 2022-04-04 | CVE-2022-23697 | Cross-site Scripting vulnerability in HP Oneview A remote cross-site scripting (xss) vulnerability was discovered in HPE OneView version(s): Prior to 6.6. | 6.1 |