Vulnerabilities > HPE

DATE CVE VULNERABILITY TITLE RISK
2023-03-22 CVE-2023-1168 Unspecified vulnerability in HPE Arubaos-Cx
An authenticated remote code execution vulnerability exists in the AOS-CX Network Analytics Engine.
network
low complexity
hpe
8.8
2023-03-10 CVE-2022-37939 Unspecified vulnerability in HPE products
A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers.
local
low complexity
hpe
5.5
2023-03-01 CVE-2022-37936 Deserialization of Untrusted Data vulnerability in HPE Serviceguard for Linux
Unauthenticated Java deserialization vulnerability in Serviceguard Manager
network
low complexity
hpe CWE-502
critical
9.8
2023-03-01 CVE-2022-37937 Out-of-bounds Write vulnerability in HPE Serviceguard for Linux
Pre-auth memory corruption in HPE Serviceguard
network
low complexity
hpe CWE-787
critical
9.8
2023-03-01 CVE-2022-37938 Server-Side Request Forgery (SSRF) vulnerability in HPE Serviceguard for Linux
Unauthenticated server side request forgery in HPE Serviceguard Manager
network
low complexity
hpe CWE-918
critical
9.8
2023-01-05 CVE-2022-37933 Injection vulnerability in HPE products
A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers.
local
low complexity
hpe CWE-74
7.8
2023-01-05 CVE-2022-37934 Path Traversal vulnerability in multiple products
A potential security vulnerability has been identified in HPE OfficeConnect 1820, and 1850 switch series.
network
low complexity
hp hpe CWE-22
7.5
2022-12-12 CVE-2022-37927 Open Redirect vulnerability in HPE Oneview Global Dashboard
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hewlett Packard Enterprise HPE OneView Global Dashboard (OVGD).
network
low complexity
hpe CWE-601
6.1
2022-12-12 CVE-2022-37928 Insufficient Verification of Data Authenticity vulnerability in HPE products
Insufficient Verification of Data Authenticity vulnerability in Hewlett Packard Enterprise HPE Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays.
network
low complexity
hpe CWE-345
6.5
2022-12-12 CVE-2022-37929 Improper Privilege Management vulnerability in HPE products
Improper Privilege Management vulnerability in Hewlett Packard Enterprise Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays.
local
low complexity
hpe CWE-269
5.5