| CVE |
Vendors |
Products |
Updated |
CVSS |
| CVE-2016-2002 |
1 Hp |
1 Vertica |
2019-02-20 |
10.0 |
| The validateAdminConfig handler in the Analytics Management Console in HPE Vertica 7.0.x before 7.0.2.12, 7.1.x before 7.1.2-12, and 7.2.x before 7.2.2-1 allows remote attackers to execute arbitrary commands via the mcPort parameter, aka ZDI-CAN-3417. |
| CVE-2016-0778 |
5 Sophos, Hp, Apple and 2 more |
6 Linux, Openssh, Solaris and 3 more |
2019-02-20 |
4.6 |
| The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2, when certain proxy and forward options are enabled, do not properly maintain connection file descriptors, which... |
| CVE-2016-0777 |
5 Sophos, Hp, Apple and 2 more |
6 Linux, Openssh, Remote Device Access Virtual Customer Access System and 3 more |
2019-02-20 |
4.0 |
| The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by... |
| CVE-2018-7111 |
2 Hpe, Hp |
2 Universal Internet Of Things, Universal Internet Of Things |
2019-02-15 |
5.0 |
| A remote unauthorized access vulnerability was identified in HPE UIoT versions 1.5, 1.4.0, 1.4.1, 1.4.2, 1.2.4.2. Specifically, there is a malfunction identified in some section of the DSM portal and some DSM APIs. The impact of the malfunction... |
| CVE-2018-18593 |
1 Hp |
1 Ucmdb Configuration Manager |
2019-02-15 |
5.0 |
| Remote Directory Traversal and Remote Disclosure of Privileged Information in UCMDB Configuration Management Service, version 10.22, 10.22 CUP1, 10.22 CUP2, 10.22 CUP3, 10.22 CUP4, 10.22 CUP5, 10.22 CUP6, 10.22 CUP7, 10.33, 10.33 CUP1, 10.33... |
| CVE-2016-3092 |
4 Hp, Apache, Debian and 1 more |
6 Ubuntu Linux, Tomcat, Debian Linux and 3 more |
2019-02-13 |
7.8 |
| The MultipartStream class in Apache Commons Fileupload before 1.3.2, as used in Apache Tomcat 7.x before 7.0.70, 8.x before 8.0.36, 8.5.x before 8.5.3, and 9.x before 9.0.0.M7 and other products, allows remote attackers to cause a denial of... |
| CVE-2015-5424 |
1 Hp |
1 Keyview |
2019-02-12 |
7.5 |
| Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2885. |
| CVE-2015-5423 |
1 Hp |
1 Keyview |
2019-02-12 |
7.5 |
| Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2884. |
| CVE-2015-5422 |
1 Hp |
1 Keyview |
2019-02-12 |
7.5 |
| Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2883. |
| CVE-2015-5421 |
1 Hp |
1 Keyview |
2019-02-12 |
7.5 |
| Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2881. |
| CVE-2015-5420 |
1 Hp |
1 Keyview |
2019-02-12 |
7.5 |
| Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2880. |
| CVE-2015-5419 |
1 Hp |
1 Keyview |
2019-02-12 |
7.5 |
| Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2879. |
| CVE-2015-5418 |
1 Hp |
1 Keyview |
2019-02-12 |
7.5 |
| Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2877. |
| CVE-2015-5417 |
1 Hp |
1 Keyview |
2019-02-12 |
7.5 |
| Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2876. |
| CVE-2015-5416 |
1 Hp |
1 Keyview |
2019-02-12 |
7.5 |
| Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2875. |
| CVE-2015-4000 |
12 Google, Openssl, Apple and 9 more |
25 Safari, Network Security Services, Ie and 22 more |
2019-02-12 |
4.3 |
| The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a... |
| CVE-2018-7112 |
1 Hp |
15 Integrated Lights-out 2 Firmware, Integrated Lights-out 3 Firmware, Integrated Lights-out 4 Firmware and 12 more |
2019-02-04 |
4.9 |
| The HPE-provided Windows firmware installer for certain Gen9, Gen8, G7,and G6 HPE servers allows local disclosure of privileged information. This issue was resolved in previously provided firmware updates as follows. The HPE Windows firmware... |
| CVE-2017-2751 |
1 Hp |
3 Compaq 14-h000 Firmware, Compaq 14-s000 Firmware, Compaq Cq45-900 Firmware |
2019-01-08 |
2.1 |
| A BIOS password extraction vulnerability has been reported on certain consumer notebooks with firmware F.22 and others. The BIOS password was stored in CMOS in a way that allowed it to be extracted. This applies to consumer notebooks launched in... |
| CVE-2018-9069 |
1 Hp |
72 320-17ikbrn, 320s-14ikb, Miix 720-12ikb and 69 more |
2019-01-02 |
7.0 |
| In some Lenovo IdeaPad consumer notebook models, a race condition in the BIOS flash device locking mechanism is not adequately protected against, potentially allowing an attacker with administrator access to alter the contents of BIOS. |
| CVE-2018-7109 |
1 Hp |
1 Enhanced Internet Usage Manager |
2019-01-02 |
5.5 |
| HPE has addressed a remote arbitrary file modification vulnerability in HPE enhanced Internet Usage Manager (eIUM) v9.0FP1 with the cumulative patch for v9.0FP1 - eIUM90FP01XXX.YYYYMMDD-HHMM. |
