Vulnerabilities > HP > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-14 | CVE-2023-45623 | Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Wi-Fi Uplink service accessed via the PAPI protocol. | 7.5 |
| 2023-11-14 | CVE-2023-45624 | An unauthenticated Denial-of-Service (DoS) vulnerability exists in the soft ap daemon accessed via the PAPI protocol. | 7.5 |
| 2023-11-14 | CVE-2023-45625 | Command Injection vulnerability in multiple products Multiple authenticated command injection vulnerabilities exist in the command line interface. | 7.2 |
| 2023-11-14 | CVE-2023-45626 | An authenticated vulnerability has been identified allowing an attacker to effectively establish highly privileged persistent arbitrary code execution across boot cycles. | 7.2 |
| 2023-10-31 | CVE-2023-5739 | Unspecified vulnerability in HP products Certain versions of HP PC Hardware Diagnostics Windows are potentially vulnerable to elevation of privilege. | 7.8 |
| 2023-10-25 | CVE-2023-5671 | Unspecified vulnerability in HP Print and Scan Doctor 5.7.2.014 HP Print and Scan Doctor for Windows may potentially be vulnerable to escalation of privilege. | 7.8 |
| 2023-10-18 | CVE-2023-26300 | Unspecified vulnerability in HP products A potential security vulnerability has been identified in the system BIOS for certain HP PC products which might allow escalation of privilege. | 7.8 |
| 2023-10-13 | CVE-2023-4499 | Improper Certificate Validation vulnerability in HP Thinupdate A potential security vulnerability has been identified in the HP ThinUpdate utility (also known as HP Recovery Image and Software Download Tool) which may lead to information disclosure. | 7.5 |
| 2023-09-05 | CVE-2015-1391 | Cross-Site Request Forgery (CSRF) vulnerability in HP Airwave Aruba AirWave before 8.0.7 allows bypass of a CSRF protection mechanism. | 8.8 |
| 2023-09-05 | CVE-2015-2201 | OS Command Injection vulnerability in multiple products Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows VisualRF remote OS command execution and file disclosure by administrative users. | 7.2 |