Vulnerabilities > HPE > Nimbleos

DATE CVE VULNERABILITY TITLE RISK
2022-05-20 CVE-2022-28618 Command Injection vulnerability in HPE Nimbleos
A command injection security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays, HPE Nimble Storage All Flash Arrays and HPE Nimble Storage Secondary Flash Arrays that could allow an attacker to execute arbitrary commands on a Nimble appliance.
network
low complexity
hpe CWE-77
critical
9.8
2022-05-09 CVE-2022-23705 Unspecified vulnerability in HPE Nimbleos
A security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays, HPE Nimble Storage All Flash Arrays, and HPE Nimble Storage Secondary Flash Arrays which could potentially allow the upload, but not execution, of unauthorized update binaries to the array.
network
low complexity
hpe
7.5
2022-04-12 CVE-2022-23703 Unspecified vulnerability in HPE Nimbleos
A security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays, HPE Nimble Storage All Flash Arrays and HPE Nimble Storage Secondary Flash Arrays during update.
network
low complexity
hpe
7.5
2020-05-19 CVE-2020-7139 Unspecified vulnerability in HPE Nimbleos
Potential remote access security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to access and modify sensitive information on the system.
network
low complexity
hpe
8.1
2020-05-19 CVE-2020-7138 Unspecified vulnerability in HPE Nimbleos
Potential remote code execution security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to gain elevated privileges on the array.
network
low complexity
hpe
8.8
2019-11-07 CVE-2019-11996 Unspecified vulnerability in HPE Nimbleos
Potential security vulnerabilities have been identified with HPE Nimble Storage systems in multi array group configurations.
network
low complexity
hpe
critical
9.8