Vulnerabilities > HPE > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-18 | CVE-2023-30911 | Unspecified vulnerability in HPE products HPE Integrated Lights-Out 5, and Integrated Lights-Out 6 using iLOrest may cause denial of service. | 7.5 |
| 2023-08-01 | CVE-2023-3718 | Command Injection vulnerability in HPE Arubaos-Cx 10.10.0000/10.10.1020/10.10.1030 An authenticated command injection vulnerability exists in the AOS-CX command line interface. | 8.8 |
| 2023-07-18 | CVE-2023-30906 | Unspecified vulnerability in HPE Intelligent Provisioning 1.72/2.81 The vulnerability could be locally exploited to allow escalation of privilege. | 7.8 |
| 2023-06-16 | CVE-2023-30905 | Unspecified vulnerability in HPE products The MC990 X and UV300 RMC component has and inadequate default configuration that could be exploited to obtain enhanced privilege. | 7.8 |
| 2023-03-22 | CVE-2023-1168 | Unspecified vulnerability in HPE Arubaos-Cx An authenticated remote code execution vulnerability exists in the AOS-CX Network Analytics Engine. | 8.8 |
| 2023-01-05 | CVE-2022-37933 | Injection vulnerability in HPE products A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers. | 7.8 |
| 2023-01-05 | CVE-2022-37934 | Path Traversal vulnerability in multiple products A potential security vulnerability has been identified in HPE OfficeConnect 1820, and 1850 switch series. | 7.5 |
| 2022-07-08 | CVE-2022-28623 | SQL Injection vulnerability in HPE Icewall SSO Certd 10.0 Security vulnerabilities in HPE IceWall SSO 10.0 certd could be exploited remotely to allow SQL injection or unauthorized data injection. | 7.5 |
| 2022-05-20 | CVE-2022-28618 | Command Injection vulnerability in HPE Nimbleos A command injection security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays, HPE Nimble Storage All Flash Arrays and HPE Nimble Storage Secondary Flash Arrays that could allow an attacker to execute arbitrary commands on a Nimble appliance. | 7.5 |
| 2022-05-09 | CVE-2022-23705 | Unspecified vulnerability in HPE Nimbleos A security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays, HPE Nimble Storage All Flash Arrays, and HPE Nimble Storage Secondary Flash Arrays which could potentially allow the upload, but not execution, of unauthorized update binaries to the array. | 7.5 |