Vulnerabilities > HP > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-02-09 CVE-2021-25139 Out-of-bounds Write vulnerability in HP Moonshot Provisioning Manager 1.20
A potential security vulnerability has been identified in the HPE Moonshot Provisioning Manager v1.20.
network
low complexity
hp CWE-787
critical
9.8
2020-12-18 CVE-2020-7203 Unspecified vulnerability in HP ILO Amplifier Pack 1.70
A potential security vulnerability has been identified in HPE iLO Amplifier Pack server version 1.70.
network
low complexity
hp
critical
9.8
2020-12-18 CVE-2020-7200 Unspecified vulnerability in HP Systems Insight Manager 7.6
A potential security vulnerability has been identified in HPE Systems Insight Manager (SIM) version 7.6.
network
low complexity
hp
critical
9.8
2020-12-02 CVE-2020-7199 Improper Authentication vulnerability in HP Edgeline Infrastructure Manager
A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software.
network
low complexity
hp CWE-287
critical
9.8
2020-10-26 CVE-2020-7197 Improper Authentication vulnerability in HP Storeserv Management Console 3.4/3.4.1/3.5.0
SSMC3.7.0.0 is vulnerable to remote authentication bypass.
network
low complexity
hp CWE-287
critical
9.8
2020-10-19 CVE-2020-7172 Expression Language Injection vulnerability in HP Intelligent Management Center
A templateselect expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7171 Expression Language Injection vulnerability in HP Intelligent Management Center
A guidatadetail expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7170 Expression Language Injection vulnerability in HP Intelligent Management Center
A select expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7169 Expression Language Injection vulnerability in HP Intelligent Management Center
A ictexpertcsvdownload expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8
2020-10-19 CVE-2020-7168 Expression Language Injection vulnerability in HP Intelligent Management Center
A selectusergroup expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
network
low complexity
hp CWE-917
critical
9.8