Vulnerabilities > HP

DATE CVE VULNERABILITY TITLE RISK
2019-07-09 CVE-2019-11991 Information Exposure vulnerability in HP 3Par Service Processor Firmware 4.1/4.4
HPE has identified a vulnerability in HPE 3PAR Service Processor (SP) version 4.1 through 4.4.
network
low complexity
hp CWE-200
critical
 9.8
9.8
2019-06-25 CVE-2019-6329 Unspecified vulnerability in HP Support Assistant 8.1.40.3/8.7.50
HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files.
local
low complexity
hp
7.8
7.8
2019-06-25 CVE-2019-6328 Unspecified vulnerability in HP Support Assistant 8.1.40.3/8.7.50
HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files.
local
low complexity
hp
7.8
7.8
2019-06-17 CVE-2019-6327 Classic Buffer Overflow vulnerability in HP products
HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v.
network
low complexity
hp CWE-120
critical
 9.8
9.8
2019-06-17 CVE-2019-6326 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP products
HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v.
network
low complexity
hp CWE-119
7.2
7.2
2019-06-17 CVE-2019-6325 Cross-Site Request Forgery (CSRF) vulnerability in HP products
HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v.
network
low complexity
hp CWE-352
8.8
8.8
2019-06-17 CVE-2019-6324 Cross-site Scripting vulnerability in HP products
HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v.
network
low complexity
hp CWE-79
4.8
4.8
2019-06-17 CVE-2019-6323 Cross-site Scripting vulnerability in HP products
HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v.
network
low complexity
hp CWE-79
6.1
6.1
2019-06-05 CVE-2019-5394 Unspecified vulnerability in HP products
The HPE Nonstop Maintenance Entity family of products are vulnerable to local disclosure of information, such as system layout and configuration.
local
high complexity
hp
5.1
5.1
2019-06-05 CVE-2019-11983 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP products
A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier than version v1.39.
network
high complexity
hp CWE-119
7.0
7.0