Vulnerabilities > HP > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-02-15 CVE-2017-8949 Unspecified vulnerability in HP Sitescope
A Disclosure of Sensitive Information vulnerability in HPE SiteScope version v11.2x, v11.3x was found.
local
low complexity
hp
5.5
5.5
2018-02-15 CVE-2017-8945 Open Redirect vulnerability in HP Icewall Federation Agent 3.0
A Remote Unauthorized Disclosure of Information vulnerability in HPE IceWall Federation Agent version 3.0 was found.
network
low complexity
hp CWE-601
6.1
6.1
2018-02-15 CVE-2017-5827 Cross-site Scripting vulnerability in HP Aruba Clearpass Policy Manager
A reflected cross site scripting vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was found.
network
low complexity
hp CWE-79
5.4
5.4
2018-02-15 CVE-2017-5813 Unspecified vulnerability in HP Network Automation
A remote unauthenticated access vulnerability in HPE Network Automation version 9.1x, 9.2x, 10.0x, 10.1x and 10.2x were found.
network
low complexity
hp
6.3
6.3
2018-02-15 CVE-2017-5809 Permission Issues vulnerability in HP Data Protector
A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found.
local
low complexity
hp CWE-275
5.5
5.5
2018-02-15 CVE-2017-5800 Cross-site Scripting vulnerability in HP Operations Bridge Analytics 3.0
A Remote Cross-Site Scripting (XSS) vulnerability in HPE Operations Bridge Analytics version v3.0 was found.
network
low complexity
hp CWE-79
5.4
5.4
2018-02-15 CVE-2017-5798 Cross-site Scripting vulnerability in HP Opencall Media Platform 3.0.0/4.0.0
A Remote Code Execution vulnerability in HPE OpenCall Media Platform (OCMP) was found.
network
low complexity
hp CWE-79
6.1
6.1
2018-02-15 CVE-2017-5795 Information Exposure vulnerability in HP Intelligent Management Center 7.2
A Local Arbitrary File Download vulnerability in HPE Intelligent Management Center (IMC) version PLAT 7.2 E0403P06 was found.
network
low complexity
hp CWE-200
6.5
6.5
2018-02-15 CVE-2017-5788 Information Exposure vulnerability in HP Nonstop Server Software T0894H02/T0894H02^Aai
A Local Disclosure of Sensitive Information vulnerability in HPE NonStop Software Essentials version T0894 T0894H02 through T0894H02^AAI was found.
local
low complexity
hp CWE-200
5.5
5.5
2018-02-15 CVE-2017-5787 Unspecified vulnerability in HP Version Control Repository Manager
A remote denial of service vulnerability in HPE Version Control Repository Manager (VCRM) in all versions prior to 7.6 was found.
network
low complexity
hp
6.5
6.5