Vulnerabilities in Hewlett Packard Enterprise

311 results
CVE-2017-8974A Local Authentication Restriction Bypass vulnerability in HPE NonStop Server version L-Series: T6533L01 through T6533L01^ADN; J-Series and EPSS 0.6%CVE-2017-5800A Remote Cross-Site Scripting (XSS) vulnerability in HPE Operations Bridge Analytics version v3.0 was found.EPSS 0.6%CVE-2022-37910MEDIUMA buffer overflow vulnerability exists in the ArubaOS command line interface. Successful exploitation of this vulnerability results in a denEPSS 0.6%CVE-2017-8978A Remote Unauthorized Disclosure of Information vulnerability in HPE IceWall Products version MFA 4.0 proxy was found.EPSS 0.6%CVE-2022-37907MEDIUMA vulnerability exists in the ArubaOS bootloader on 7xxx series controllers which can result in a denial of service (DoS) condition on an imEPSS 0.6%CVE-2022-37911LOWDue to improper restrictions on XML entities multiple vulnerabilities exist in the command line interface of ArubaOS. A successful exploit cEPSS 0.5%CVE-2017-8991HPE has identified a cross site scripting (XSS) vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issEPSS 0.5%CVE-2016-8532A cross site scripting vulnerability in HPE Matrix Operating Environment version 7.6 was found.EPSS 0.5%CVE-2024-41914HIGHA vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conEPSS 0.5%CVE-2018-7100A potential security vulnerability has been identified in HPE OfficeConnect 1810 Switch Series (HP 1810-24G - P.2.22 and previous versions, EPSS 0.5%CVE-2018-7060Aruba ClearPass 6.6.x prior to 6.6.9 and 6.7.x prior to 6.7.1 is vulnerable to CSRF attacks against authenticated users. An attacker could mEPSS 0.5%CVE-2025-37097HIGHA vulnerability in HPE Insight Remote Support (IRS) prior to v7.15.0.646 may allow an unauthenticated denial of serviceEPSS 0.4%CVE-2024-22435HIGHHPE NonStop Web ViewPoint Enterprise software, Unauthorized accessEPSS 0.4%CVE-2024-42398MEDIUMUnauthenticated Denial-of-Service (DoS) Vulnerabilities in the Soft AP Daemon Service Accessed by the PAPI ProtocolEPSS 0.4%CVE-2024-42399MEDIUMUnauthenticated Denial-of-Service (DoS) Vulnerabilities in the Soft AP Daemon Service Accessed by the PAPI ProtocolEPSS 0.4%CVE-2024-42400MEDIUMUnauthenticated Denial-of-Service (DoS) Vulnerabilities in the Soft AP Daemon Service Accessed by the PAPI ProtocolEPSS 0.4%CVE-2024-22440MEDIUMHPE Compute Scale-up Server 3200 Server, Disclosure of Sensitive InformationEPSS 0.4%CVE-2025-37106HIGHAn authentication bypass and disclosure of information vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.18.EPSS 0.4%CVE-2024-13804CRITICALUnauthenticated RCE in HPE Insight Cluster Management UtilityEPSS 0.4%CVE-2017-8985HPE XP Storage using Hitachi Global Link Manager (HGLM) has a local authenticated information disclosure vulnerability in HGLM version HGLM EPSS 0.4%