Vulnerabilities > HP
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-10 | CVE-2012-1994 | Information Exposure vulnerability in HP Systems Insight Manager HP Systems Insight Manager before 7.0 allows a remote user on adjacent network to access information | 5.7 |
| 2020-02-04 | CVE-2015-2802 | Information Exposure vulnerability in HP products An Information Disclosure vulnerability exists in HP SiteScope 11.2 and 11.3 on Windows, Linux and Solaris, HP Asset Manager 9.30 through 9.32, 9.40 through 9.41, 9.50, and Asset Manager Cloudsystem Chargeback 9.40, which could let a remote malicious user obtain sensitive information. | 7.5 |
| 2020-02-03 | CVE-2019-18567 | Out-of-bounds Read vulnerability in HP Bromium 4.0.3.2060/4.1.7 Bromium client version 4.0.3.2060 and prior to 4.1.7 Update 1 has an out of bound read results in race condition causing Kernel memory leaks or denial of service. | 6.3 |
| 2020-01-31 | CVE-2019-18913 | Unspecified vulnerability in HP products A potential security vulnerability with pre-boot DMA may allow unauthorized UEFI code execution using open-case attacks. low complexity hp | 6.8 |
| 2020-01-30 | CVE-2015-0949 | Improper Privilege Management vulnerability in multiple products The System Management Mode (SMM) implementation in Dell Latitude E6430 BIOS Revision A09, HP EliteBook 850 G1 BIOS revision L71 Ver. | 7.8 |
| 2020-01-27 | CVE-2019-19539 | Insufficiently Protected Credentials vulnerability in HP products An issue was discovered in Idelji Web ViewPoint H01ABO-H01BY and L01ABP-L01ABZ, Web ViewPoint Plus H01AAG-H01AAQ and L01AAH-L01AAR, and Web ViewPoint Enterprise H01-H01AAE and L01-L01AAF. | 5.5 |
| 2020-01-27 | CVE-2014-7303 | Incorrect Default Permissions vulnerability in HP SGI Tempo SGI Tempo, as used on SGI ICE-X systems, uses weak permissions for certain files, which allows local users to obtain password hashes and possibly other unspecified sensitive information by reading etc/dbdump.db. | 7.8 |
| 2020-01-27 | CVE-2014-7302 | Incorrect Default Permissions vulnerability in HP SGI Tempo SGI Tempo, as used on SGI ICE-X systems, uses weak permissions for certain files, which allows local users to change the permissions of arbitrary files by executing /opt/sgi/sgimc/bin/vx. | 7.8 |
| 2020-01-27 | CVE-2014-7301 | Incorrect Default Permissions vulnerability in HP SGI Tempo SGI Tempo, as used on SGI ICE-X systems, uses weak permissions for certain files, which allows local users to obtain password hashes and possibly other unspecified sensitive information by reading /etc/odapw. | 6.6 |
| 2020-01-17 | CVE-2019-3683 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products The keystone-json-assignment package in SUSE Openstack Cloud 8 before commit d7888c75505465490250c00cc0ef4bb1af662f9f every user listed in the /etc/keystone/user-project-map.json was assigned full "member" role access to every project. | 8.8 |