Vulnerabilities > HPE
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-13 | CVE-2024-22441 | Improper Authentication vulnerability in HPE Cray Parallel Application Launch Service HPE Cray Parallel Application Launch Service (PALS) is subject to an authentication bypass. | 9.8 |
| 2023-12-19 | CVE-2023-50272 | Unspecified vulnerability in HPE products A potential security vulnerability has been identified in HPE Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 6 (iLO 6). | 9.8 |
| 2023-10-25 | CVE-2023-30912 | Unspecified vulnerability in HPE Oneview 8.30.01 A remote code execution issue exists in HPE OneView. | 9.8 |
| 2023-10-18 | CVE-2023-30911 | Unspecified vulnerability in HPE products HPE Integrated Lights-Out 5, and Integrated Lights-Out 6 using iLOrest may cause denial of service. | 7.5 |
| 2023-10-09 | CVE-2023-30910 | HTTP Request Smuggling vulnerability in HPE products HPE MSA Controller prior to version IN210R004 could be remotely exploited to allow inconsistent interpretation of HTTP requests. | 5.4 |
| 2023-08-29 | CVE-2023-39266 | Cross-site Scripting vulnerability in HPE Arubaos-Switch A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. | 6.1 |
| 2023-08-29 | CVE-2023-39267 | Unspecified vulnerability in HPE Arubaos-Switch An authenticated remote code execution vulnerability exists in the command line interface in ArubaOS-Switch. | 6.5 |
| 2023-08-29 | CVE-2023-39268 | Out-of-bounds Write vulnerability in HPE Arubaos-Switch A memory corruption vulnerability in ArubaOS-Switch could lead to unauthenticated remote code execution by receiving specially crafted packets. | 9.8 |
| 2023-08-01 | CVE-2023-3718 | Command Injection vulnerability in HPE Arubaos-Cx 10.10.0000/10.10.1020/10.10.1030 An authenticated command injection vulnerability exists in the AOS-CX command line interface. | 8.8 |
| 2023-07-18 | CVE-2023-30906 | Unspecified vulnerability in HPE Intelligent Provisioning 1.72/2.81 The vulnerability could be locally exploited to allow escalation of privilege. | 7.8 |