Vulnerabilities > HP > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-22 | CVE-2019-18909 | OS Command Injection vulnerability in HP Thinpro The VPN software within HP ThinPro does not safely handle user supplied input, which may be leveraged by an attacker to inject commands that will execute with root privileges. | 8.0 |
| 2019-11-05 | CVE-2019-16284 | Unspecified vulnerability in HP products A potential security vulnerability has been identified in multiple HP products and versions which involves possible execution of arbitrary code during boot services that can result in elevation of privilege. | 7.2 |
| 2019-10-11 | CVE-2019-6335 | Unspecified vulnerability in HP products A potential security vulnerability has been identified with Samsung Laser Printers. | 7.5 |
| 2019-10-04 | CVE-2019-11655 | Unrestricted Upload of File with Dangerous Type vulnerability in HP Arcsight Logger Unrestricted file upload vulnerability in Micro Focus ArcSight Logger, version 6.7.0 and later. | 8.8 |
| 2019-08-09 | CVE-2019-5406 | Session Fixation vulnerability in HP 3Par Storeserv Management Console 3.3.1/3.5 A remote session reuse vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. | 7.2 |
| 2019-08-09 | CVE-2019-5405 | Unspecified vulnerability in HP 3Par Storeserv Management Console 3.3.1/3.5 A remote authorization bypass vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. | 7.3 |
| 2019-08-09 | CVE-2019-5404 | Injection vulnerability in HP 3Par Storeserv Management Console 3.3.1/3.5 A remote script injection vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. | 8.8 |
| 2019-08-09 | CVE-2019-5395 | Unrestricted Upload of File with Dangerous Type vulnerability in HP 3Par Service Processor Firmware A remote arbitrary file upload vulnerability was discovered in HPE 3PAR Service Processor version(s): prior to 5.0.5.1. | 8.8 |
| 2019-07-19 | CVE-2019-11990 | Unspecified vulnerability in HP Universal Internet of Things Security vulnerabilities in HPE UIoT versions 1.6, 1.5, 1.4.2, 1.4.1, 1.4.0, and 1.2.4.2 could allow unauthorized remote access and access to sensitive data. | 8.8 |
| 2019-06-25 | CVE-2019-6329 | Unspecified vulnerability in HP Support Assistant 8.1.40.3/8.7.50 HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. | 7.8 |