Vulnerabilities > HP > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-15 | CVE-2016-8513 | Cross-Site Request Forgery (CSRF) vulnerability in HP Version Control Repository Manager A Cross-Site Request Forgery (CSRF) vulnerability in HPE Version Control Repository Manager (VCRM) was found. | 8.0 |
| 2018-02-07 | CVE-2017-17482 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP Openvms 4.0/8.42L1 An issue was discovered in OpenVMS through V8.4-2L2 on Alpha and through V8.4-2L1 on IA64, and VAX/VMS 4.0 and later. | 7.8 |
| 2018-01-23 | CVE-2017-2747 | Unspecified vulnerability in HP products HP has identified a potential security vulnerability before IG_11_00_00.10 for DesignJet T790, T795, T1300, T2300, before MRY_04_05_00.5 for DesignJet T920, T930, T1500, T1530, T2500, T2530, before AENEAS_03_04_00.9 for DesignJet T3500, before NEXUS_01_12_00.11 for Latex 310, 330, 360, 370, before NEXUS_03_12_00.15 for Latex 315, 335, 365, 375, before STORM_00_05_01.6 for Latex 560, 570 and Latex 110 that may expose the credentials of the SMTP server configured to receive and process emails generated by the printers. | 7.8 |
| 2018-01-23 | CVE-2017-2742 | Unspecified vulnerability in HP web Jetadmin A potential security vulnerability has been identified with HP Web Jetadmin before 10.4 SR2. | 7.5 |
| 2018-01-23 | CVE-2017-2740 | Unspecified vulnerability in HP Thinpro A potential security vulnerability has been identified with the command line shell of the HP ThinPro operating system 6.1, 5.2.1, 5.2, 5.1, 5.0, and 4.4. | 7.8 |
| 2018-01-18 | CVE-2018-2637 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JMX). | 7.4 |
| 2018-01-18 | CVE-2018-2633 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). | 8.3 |
| 2017-11-08 | CVE-2017-14360 | Resource Exhaustion vulnerability in HP Content Manager 9.0 A potential security vulnerability has been identified in HPE Content Manager Workgroup Service v9.00. | 7.5 |
| 2017-10-05 | CVE-2017-14353 | Code Injection vulnerability in HP Ucmdb Foundation Software A remote code execution vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33, could be remotely exploited to allow code execution. | 8.8 |
| 2017-09-30 | CVE-2017-13989 | Unspecified vulnerability in HP products An improper access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows unauthorized users to retrieve or modify storage information. | 8.1 |