CVE-2016-2776

Public exploit
buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.
Max CVSS
7.8
EPSS Score
97.29%
Published
2016-09-28
Updated
2019-12-27

CVE-2013-4835

Public exploit
The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x before 11.22 allows remote attackers to bypass authentication and execute arbitrary code via a direct request to the issueSiebelCmd method, aka ZDI-CAN-1765.
Max CVSS
7.5
EPSS Score
97.14%
Published
2013-11-04
Updated
2017-07-01

CVE-2013-4824

Public exploit
Unspecified vulnerability in HP Intelligent Management Center (iMC) and HP IMC Service Operation Management Software Module allows remote attackers to bypass authentication via unknown vectors, aka ZDI-CAN-1644.
Max CVSS
7.5
EPSS Score
95.13%
Published
2013-10-13
Updated
2019-10-09

CVE-2013-2370

Public exploit
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1671.
Max CVSS
7.5
EPSS Score
94.56%
Published
2013-07-29
Updated
2019-10-09

CVE-2012-5204

Public exploit
Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1614.
Max CVSS
7.5
EPSS Score
73.62%
Published
2013-03-09
Updated
2019-10-09

CVE-2012-5203

Public exploit
Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1613.
Max CVSS
7.5
EPSS Score
73.62%
Published
2013-03-09
Updated
2019-10-09

CVE-2012-5202

Public exploit
Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1612.
Max CVSS
7.5
EPSS Score
73.62%
Published
2013-03-09
Updated
2019-10-09

CVE-2012-4361

Public exploit
lhn/public/network/ping in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the second parameter.
Max CVSS
7.7
EPSS Score
16.61%
Published
2012-08-20
Updated
2012-08-21

CVE-2011-4166

Public exploit
Directory traversal vulnerability in the MPAUploader.Uploader.1.UploadFiles method in HP Managed Printing Administration before 2.6.4 allows remote attackers to create arbitrary files via crafted form data.
Max CVSS
7.5
EPSS Score
95.57%
Published
2011-12-27
Updated
2019-10-09

CVE-2011-2404

Public exploit
A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via unspecified vectors, a different vulnerability than CVE-2011-4786 and CVE-2011-4787.
Max CVSS
7.5
EPSS Score
85.30%
Published
2011-08-11
Updated
2012-01-14

CVE-2010-3007

Public exploit
Unspecified vulnerability in HP Data Protector Express, and Data Protector Express Single Server Edition (SSE), 3.x before build 56936 and 4.x before build 56906 allows local users to gain privileges or cause a denial of service via unknown vectors.
Max CVSS
7.2
EPSS Score
91.06%
Published
2010-09-09
Updated
2019-10-09

CVE-2010-1964

Public exploit
Buffer overflow in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified parameters to jovgraph.exe, aka ZDI-CAN-683.
Max CVSS
7.5
EPSS Score
96.38%
Published
2010-06-17
Updated
2018-10-10

CVE-2009-0920

Public exploit
Stack-based buffer overflow in OvCgi/Toolbar.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long OvOSLocale cookie, a variant of CVE-2008-0067.
Max CVSS
7.5
EPSS Score
74.94%
Published
2009-03-25
Updated
2018-10-10

CVE-2007-5208

Public exploit
hpssd in Hewlett-Packard Linux Imaging and Printing Project (hplip) 1.x and 2.x before 2.7.10 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a from address, which is not properly handled when invoking sendmail.
Max CVSS
7.6
EPSS Score
22.32%
Published
2007-10-13
Updated
2018-10-03

CVE-2005-2773

Known exploited
Public exploit
HP OpenView Network Node Manager 6.2 through 7.50 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) node parameter to connectedNodes.ovpl, (2) cdpView.ovpl, (3) freeIPaddrs.ovpl, and (4) ecscmg.ovpl.
Max CVSS
7.5
EPSS Score
96.61%
Published
2005-09-02
Updated
2017-07-11
CISA KEV Added
2022-03-25

CVE-1999-0517

Public exploit
An SNMP community name is the default (e.g. public), null, or missing.
Max CVSS
7.5
EPSS Score
45.45%
Published
1997-01-01
Updated
2022-08-17

CVE-1999-0502

Public exploit
A Unix account has a default, null, blank, or missing password.
Max CVSS
7.5
EPSS Score
1.30%
Published
1998-03-01
Updated
2022-08-17
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Max CVSS
7.2
EPSS Score
0.04%
Published
2024-03-05
Updated
2024-03-06
HPE OneView may allow clusterService Authentication Bypass resulting in denial of service.
Max CVSS
7.5
EPSS Score
0.05%
Published
2024-01-23
Updated
2024-01-29
HPE OneView may allow command injection with local privilege escalation.
Max CVSS
7.8
EPSS Score
0.04%
Published
2024-01-23
Updated
2024-01-29
A potential security vulnerability has been identified with HP-UX System Management Homepage (SMH). This vulnerability could be exploited locally or remotely to disclose information.
Max CVSS
7.5
EPSS Score
0.09%
Published
2023-12-17
Updated
2023-12-21
An authenticated vulnerability has been identified allowing an attacker to effectively establish highly privileged persistent arbitrary code execution across boot cycles.
Max CVSS
7.2
EPSS Score
0.06%
Published
2023-11-14
Updated
2023-11-21
Multiple authenticated command injection vulnerabilities exist in the command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Max CVSS
7.2
EPSS Score
0.05%
Published
2023-11-14
Updated
2023-11-21
An unauthenticated Denial-of-Service (DoS) vulnerability exists in the soft ap daemon accessed via the PAPI protocol. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected access point.
Max CVSS
7.5
EPSS Score
0.05%
Published
2023-11-14
Updated
2023-11-22
Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Wi-Fi Uplink service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to interrupt the normal operation of the affected access point.
Max CVSS
7.5
EPSS Score
0.05%
Published
2023-11-14
Updated
2023-11-22
516 vulnerabilities found
1 2 3 4 5 6 ...... 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!