Vulnerabilities > HP > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-09-27 CVE-2018-7109 Unspecified vulnerability in HP Enhanced Internet Usage Manager 9.0
HPE has addressed a remote arbitrary file modification vulnerability in HPE enhanced Internet Usage Manager (eIUM) v9.0FP1 with the cumulative patch for v9.0FP1 - eIUM90FP01XXX.YYYYMMDD-HHMM.
network
low complexity
hp
6.5
6.5
2018-09-20 CVE-2018-6503 Unspecified vulnerability in HP Arcsight Management Center 2.0/2.9.1
A potential Access Control vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81.
network
low complexity
hp
6.5
6.5
2018-09-20 CVE-2018-6502 Cross-site Scripting vulnerability in HP Arcsight Management Center 2.0/2.9.1
A potential Reflected Cross-Site Scripting (XSS) Security vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81.
network
low complexity
hp CWE-79
6.1
6.1
2018-09-20 CVE-2018-6501 Unspecified vulnerability in HP Arcsight Management Center 2.0/2.9.1
Potential security vulnerability of Insufficient Access Controls has been identified in ArcSight Management Center (ArcMC) for versions prior to 2.81.
network
low complexity
hp
6.5
6.5
2018-08-14 CVE-2018-7100 Unspecified vulnerability in HP products
A potential security vulnerability has been identified in HPE OfficeConnect 1810 Switch Series (HP 1810-24G - P.2.22 and previous versions, HP 1810-48G PK.1.34 and previous versions, HP 1810-8 v2 P.2.22 and previous versions).
local
low complexity
hp
5.5
5.5
2018-08-14 CVE-2018-7099 Unspecified vulnerability in HP 3Par Service Provider Sp4.2.0/Sp4.3.0/Sp4.4.0
A security vulnerability was identified in 3PAR Service Processor (SP) prior to SP-4.4.0.GA-110(MU7).
local
low complexity
hp
5.5
5.5
2018-08-06 CVE-2018-7091 Open Redirect vulnerability in HP XP 9000 Command View
HPE XP P9000 Command View Advanced Edition Software (CVAE) has open URL redirection vulnerability in versions 7.0.0-00 to earlier than 8.60-00 of DevMgr, TSMgr and RepMgr.
network
low complexity
hp CWE-601
6.1
6.1
2018-08-06 CVE-2018-7090 Cross-site Scripting vulnerability in HP XP 9000 Command View
HPE XP P9000 Command View Advanced Edition Software (CVAE) has local and remote cross site scripting vulnerability in versions 7.0.0-00 to earlier than 8.60-00 of DevMgr, TSMgr and RepMgr.
network
low complexity
hp CWE-79
6.1
6.1
2018-08-06 CVE-2018-7075 Cross-site Scripting vulnerability in HP Intelligent Management Center 7.3
A remote cross-site scripting (XSS) vulnerability was identified in HPE Intelligent Management Center (iMC) PLAT version v7.3 (E0506).
network
low complexity
hp CWE-79
6.1
6.1
2018-08-06 CVE-2018-7073 Exposure of Resource to Wrong Sphere vulnerability in multiple products
A local arbitrary file modification vulnerability was identified in HPE Moonshot Provisioning Manager prior to v1.24.
local
low complexity
hp canonical CWE-668
5.5
5.5