Vulnerabilities > HP > Storage Essentials

DATE CVE VULNERABILITY TITLE RISK
2020-03-10 CVE-2017-10992 Deserialization of Untrusted Data vulnerability in HP Storage Essentials 9.5.0.142
In HPE Storage Essentials 9.5.0.142, there is Unauthenticated Java Deserialization with remote code execution via OS commands in a request to invoker/JMXInvokerServlet, aka PSRT110461.
network
low complexity
hp CWE-502
critical
 10.0
10
2010-10-28 CVE-2010-4029 Unspecified vulnerability in HP Storage Essentials
Unspecified vulnerability in HP Storage Essentials before 6.3.0, when LDAP authentication is enabled, allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors.
network
low complexity
hp
7.5
7.5
2009-04-21 CVE-2009-0715 Unspecified vulnerability in HP Storage Essentials 6.0.2/6.0.3/6.0.4
Unspecified vulnerability in Secure NaviCLI in HP Storage Essentials 6.0.2 through 6.0.4 allows remote authenticated users to obtain "access" or "extended privileges" via unknown vectors.
network
low complexity
hp
6.5
6.5