Vulnerabilities > HPE

DATE	CVE	VULNERABILITY TITLE	RISK
2019-06-05	CVE-2019-11988	Unspecified vulnerability in HPE Smart Update Manager A Remote Unauthorized Access vulnerability was identified in HPE Smart Update Manager (SUM) earlier than version 8.3.5. network low complexity hpe	7.5
2019-06-05	CVE-2019-11987	Unspecified vulnerability in HPE Smart Update Manager A security vulnerability in HPE Smart Update Manager (SUM) prior to v8.4 could allow local unauthorized elevation of privilege. local low complexity hpe	4.6
2019-05-15	CVE-2019-8936	NULL Pointer Dereference vulnerability in multiple products NTP through 4.2.8p12 has a NULL Pointer Dereference. network low complexity netapp fedoraproject opensuse hpe ntp CWE-476	7.5
2019-02-04	CVE-2019-7317	Use After Free vulnerability in multiple products png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute. network high complexity libpng debian canonical oracle hpe hp mozilla opensuse netapp redhat CWE-416	2.6
2019-01-17	CVE-2018-20733	XXE vulnerability in SAS web Infrastructure Platform 9.4 BI Web Services in SAS Web Infrastructure Platform before 9.4M6 allows XXE. network low complexity sas hpe ibm linux microsoft oracle CWE-611	5.0
2019-01-17	CVE-2018-20732	Deserialization of Untrusted Data vulnerability in SAS web Infrastructure Platform 9.4 SAS Web Infrastructure Platform before 9.4M6 allows remote attackers to execute arbitrary code via a Java deserialization variant. network low complexity sas hpe ibm linux microsoft oracle CWE-502	7.5
2019-01-17	CVE-2015-9281	Cross-site Scripting vulnerability in SAS web Infrastructure Platform 9.4 Logon Manager in SAS Web Infrastructure Platform before 9.4M3 allows reflected XSS on the Timeout page. network sas hpe ibm linux microsoft oracle CWE-79	4.3
2018-10-17	CVE-2018-7110	Race Condition vulnerability in HPE Service Governance Framework 4.2/4.3 A remote unauthorized disclosure of information vulnerability was identified in HPE Service Governance Framework (SGF) version 4.2, 4.3. network hpe redhat CWE-362	4.3
2018-09-27	CVE-2018-7108	Improper Authentication vulnerability in HPE Storageworks XP7 Automation Director HPE StorageWorks XP7 Automation Director (AutoDir) version 8.5.2-02 to earlier than 8.6.1-00 has a local and remote authentication bypass vulnerability that exposed the user authentication information of the storage system. network hpe CWE-287	4.3
2018-09-27	CVE-2018-7107	SQL Injection vulnerability in HPE Device Entitlement Gateway 3.2.4/3.3/3.3.1 A potential security vulnerability has been identified in HPE Device Entitlement Gateway (DEG) v3.2.4, v3.3 and v3.3.1. network low complexity hpe CWE-89	6.5

Vulnerabilities > HPE {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"HPE"}]}

Vulnerabilities > HPE