Vulnerabilities > HP > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-14 | CVE-2023-30909 | Unspecified vulnerability in HP Oneview A remote authentication bypass issue exists in some OneView APIs. | 9.8 |
| 2023-09-07 | CVE-2023-30908 | Unspecified vulnerability in HP Oneview A remote authentication bypass issue exists in a OneView API. | 9.8 |
| 2023-07-25 | CVE-2023-35980 | Classic Buffer Overflow vulnerability in multiple products There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). | 9.8 |
| 2023-07-25 | CVE-2023-35981 | Classic Buffer Overflow vulnerability in multiple products There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). | 9.8 |
| 2023-07-25 | CVE-2023-35982 | Classic Buffer Overflow vulnerability in multiple products There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). | 9.8 |
| 2023-07-21 | CVE-2023-26301 | Missing Authorization vulnerability in HP products Certain HP LaserJet Pro print products are potentially vulnerable to an Elevation of Privilege and/or Information Disclosure related to a lack of authentication with certain endpoints. | 9.8 |
| 2023-06-30 | CVE-2023-35175 | Server-Side Request Forgery (SSRF) vulnerability in HP products Certain HP LaserJet Pro print products are potentially vulnerable to Potential Remote Code Execution and/or Elevation of Privilege via Server-Side Request Forgery (SSRF) using the Web Service Eventing model. | 9.8 |
| 2023-06-14 | CVE-2023-1329 | Unspecified vulnerability in HP products A potential security vulnerability has been identified for certain HP multifunction printers (MFPs). | 9.8 |
| 2023-06-12 | CVE-2023-26295 | Command Injection vulnerability in HP Device Manager Previous versions of HP Device Manager (prior to HPDM 5.0.10) could potentially allow command injection and/or elevation of privileges. | 9.8 |
| 2023-06-12 | CVE-2023-32673 | Unspecified vulnerability in HP products Certain versions of HP PC Hardware Diagnostics Windows, HP Image Assistant, and HP Thunderbolt Dock G2 Firmware are potentially vulnerable to elevation of privilege. | 9.8 |