| CVE |
Vendors |
Products |
Updated |
CVSS |
| CVE-2019-6333 |
1 Hp |
1 Touchpoint Analytics |
2019-10-16 |
7.2 |
| A potential security vulnerability has been identified with certain versions of HP Touchpoint Analytics prior to version 4.1.4.2827. This vulnerability may allow a local attacker with administrative privileges to execute arbitrary code via an HP... |
| CVE-2019-11655 |
1 Hp |
1 Arcsight Logger |
2019-10-10 |
6.5 |
| Unrestricted file upload vulnerability in Micro Focus ArcSight Logger, version 6.7.0 and later. This vulnerability could allow Unrestricted Upload of File with Dangerous type. |
| CVE-2018-5926 |
1 Hp |
1 Remote Graphics Software |
2019-10-10 |
6.4 |
| A potential vulnerability has been identified in HP Remote Graphics Software?s certificate authentication process version 7.5.0 and earlier. |
| CVE-2019-3485 |
1 Hp |
1 Arcsight Logger |
2019-10-09 |
4.3 |
| Mitigates a stored cross site scripting issue in ArcSight Logger versions prior to 6.7.1 |
| CVE-2018-6494 |
1 Hp |
1 Service Manager Web Tier |
2019-10-09 |
5.5 |
| Remote SQL Injection against the HP Service Manager Software Web Tier, version 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, may lead to unauthorized disclosure of data. |
| CVE-2018-6493 |
1 Hp |
2 Network Automation, Network Operations Management Ultimate |
2019-10-09 |
6.5 |
| SQL Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11, 2018.02 and in Network Automation, version 10.00, 10.10, 10.11, 10.20, 10.30, 10.40, 10.50. This vulnerability could be remotely exploited to allow Remote SQL Injection. |
| CVE-2018-6492 |
1 Hp |
2 Network Automation, Network Operations Management Ultimate |
2019-10-09 |
4.3 |
| Persistent Cross-Site Scripting, and non-persistent HTML Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11, 2018.02 and in Network Automation, version 10.00, 10.10, 10.11, 10.20, 10.30, 10.40, 10.50. This... |
| CVE-2018-6490 |
1 Hp |
1 Operations Orchestration |
2019-10-09 |
7.8 |
| Denial of Service vulnerability in Micro Focus Operations Orchestration Software, version 10.x. This vulnerability could be remotely exploited to allow Denial of Service. |
| CVE-2018-18593 |
1 Hp |
1 Ucmdb Configuration Manager |
2019-10-09 |
5.0 |
| Remote Directory Traversal and Remote Disclosure of Privileged Information in UCMDB Configuration Management Service, version 10.22, 10.22 CUP1, 10.22 CUP2, 10.22 CUP3, 10.22 CUP4, 10.22 CUP5, 10.22 CUP6, 10.22 CUP7, 10.33, 10.33 CUP1, 10.33... |
| CVE-2018-12463 |
1 Hp |
1 Fortify Software Security Center |
2019-10-09 |
7.5 |
| An XML external entity (XXE) vulnerability in Fortify Software Security Center (SSC), version 17.1, 17.2, 18.1 allows remote unauthenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in... |
| CVE-2017-3210 |
3 Fujitsu, Hp, Philips |
5 Displayview Click, Displayview Click Suite, Display Assistant and 2 more |
2019-10-09 |
7.2 |
| Applications developed using the Portrait Display SDK, versions 2.30 through 2.34, default to insecure configurations which allow arbitrary code execution. A number of applications developed using the Portrait Displays SDK do not use secure... |
| CVE-2017-14360 |
1 Hp |
1 Content Manager |
2019-10-09 |
5.0 |
| A potential security vulnerability has been identified in HPE Content Manager Workgroup Service v9.00. The vulnerability could be remotely exploited to allow Denial of Service (DoS). |
| CVE-2017-12151 |
4 Hp, Samba, Debian and 1 more |
8 Cifs Server, Samba, Debian Linux and 5 more |
2019-10-09 |
5.8 |
| A flaw was found in the way samba client before samba 4.4.16, samba 4.5.14 and samba 4.6.8 used encryption with the max protocol set as SMB3. The connection could lose the requirement for signing and encrypting to any DFS redirects, allowing an... |
| CVE-2016-9597 |
6 Hp, Xmlsoft, Canonical and 3 more |
7 Icewall Federation Agent, Icewall File Manager, Libxml2 and 4 more |
2019-10-09 |
5.0 |
| It was found that Red Hat JBoss Core Services erratum RHSA-2016:2957 for CVE-2016-3705 did not actually include the fix for the issue found in libxml2, making it vulnerable to a Denial of Service attack due to a Stack Overflow. This is a... |
| CVE-2016-2246 |
1 Hp |
1 Thinpro |
2019-10-09 |
7.2 |
| HP ThinPro 4.4 through 6.1 mishandles the keyboard layout control panel and virtual keyboard application, which allows local users to bypass intended access restrictions and gain privileges via unspecified vectors. |
| CVE-2015-4000 |
12 Google, Openssl, Apple and 9 more |
25 Safari, Network Security Services, Ie and 22 more |
2019-10-09 |
4.3 |
| The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a... |
| CVE-2015-2125 |
1 Hp |
1 Webinspect |
2019-10-09 |
4.0 |
| Unspecified vulnerability in HP WebInspect 7.x through 10.4 before 10.4 update 1 allows remote authenticated users to bypass intended access restrictions via unknown vectors. |
| CVE-2015-2118 |
1 Hp |
1 Access Control |
2019-10-09 |
4.0 |
| Unspecified vulnerability in the Secure Pull Print and Security Pull Print components in HP Access Control (AC) Software 12.x through 14.x before 14.1.2 allows remote authenticated users to obtain sensitive information via unknown vectors. |
| CVE-2015-2113 |
1 Hp |
1 Easy Tools |
2019-10-09 |
10.0 |
| Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620, and t820 devices allows remote... |
| CVE-2015-2112 |
1 Hp |
1 Easy Tools |
2019-10-09 |
9.0 |
| Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t520, t610, t620, and t820 devices allows remote... |
