Latest Hp Vulnerabilities

CVE-2023-6573
HPE OneView may have a missing passphrase during restore.
HP OneView<8.70
CVE-2023-50275
HPE OneView may allow clusterService Authentication Bypass resulting in denial of service.
HP OneView<8.70
CVE-2023-50274
HPE OneView may allow command injection with local privilege escalation.
HP OneView<8.70
CVE-2023-47158
IBM Db2 denial of service
IBM IBM® Db2®<=10.5.0.x
IBM IBM® Db2®<=11.1.4.x
IBM IBM® Db2®<=11.5.x
>=10.5.0.0<=10.5.0.11
>=11.1.0.0<=11.1.4.7
>=11.5<=11.5.9
and 6 more
CVE-2023-27859
IBM Db2 code execution
IBM IBM® Db2®<=10.5.0.x
IBM IBM® Db2®<=11.1.4.x
IBM IBM® Db2®<=11.5.x
>=10.5.0.0<=10.5.0.11
>=11.1.0.0<=11.1.4.7
>=11.5<=11.5.9
and 6 more
CVE-2023-47747
IBM Db2 denial of service
IBM IBM® Db2®<=10.5.0.x
IBM IBM® Db2®<=11.1.4.x
IBM IBM® Db2®<=11.5.x
>=10.5.0.0<=10.5.0.11
>=11.1.0.0<=11.1.4.7
>=11.5<=11.5.9
and 6 more
CVE-2023-47746
IBM Db2 denial of service
IBM IBM® Db2®<=10.5.0.x
IBM IBM® Db2®<=11.1.4.x
IBM IBM® Db2®<=11.5.x
>=10.5.0.0<=10.5.0.11
>=11.1.0.0<=11.1.4.7
>=11.5<=11.5.9
and 6 more
CVE-2023-50271
HP-UX System Management Homepage, Disclosure of Information
HP System Management Homepage<a.3.2.23.09
HP HP-UX
CVE-2023-4694
Hp Officejet Pro 8730 D9l19a Firmware<001.2337a
Hp Officejet Pro 8730 D9l19a
Hp Officejet Pro 8730 M9l74a Firmware<001.2337a
Hp Officejet Pro 8730 M9l74a
Hp Officejet Pro 8730 M9l75a Firmware<001.2337a
Hp Officejet Pro 8730 M9l75a
and 18 more
CVE-2023-29066
Incorrect User Management
Bd Facschorus=5.0
Bd Facschorus=5.1
Hp Hp Z2 Tower G9
Bd Facschorus=3.0
Bd Facschorus=3.1
Hp Hp Z2 Tower G5
CVE-2023-29065
Overly Permissive Access Policy
Bd Facschorus=5.0
Bd Facschorus=5.1
Hp Hp Z2 Tower G9
Bd Facschorus=3.0
Bd Facschorus=3.1
Hp Hp Z2 Tower G5
CVE-2023-29064
Hardcoded Secrets
Bd Facschorus=5.0
Bd Facschorus=5.1
Hp Hp Z2 Tower G9
Bd Facschorus=3.0
Bd Facschorus=3.1
Hp Hp Z2 Tower G5
CVE-2023-29063
Lack of DMA Access Protections
Bd Facschorus=5.0
Bd Facschorus=5.1
Hp Hp Z2 Tower G9
Bd Facschorus=3.0
Bd Facschorus=3.1
Hp Hp Z2 Tower G5
CVE-2023-29062
Unsecure Identity Verification
Bd Facschorus=5.0
Bd Facschorus=5.1
Hp Hp Z2 Tower G9
Bd Facschorus=3.0
Bd Facschorus=3.1
Hp Hp Z2 Tower G5
CVE-2023-29061
Lack of Adequate BIOS Authentication
Bd Facschorus=5.0
Bd Facschorus=5.1
Hp Hp Z2 Tower G9
Bd Facschorus=3.0
Bd Facschorus=3.1
Hp Hp Z2 Tower G5
CVE-2023-29060
Lack of USB Whitelisting
Bd Facschorus=5.0
Bd Facschorus=5.1
Hp Hp Z2 Tower G9
Bd Facschorus=3.0
Bd Facschorus=3.1
Hp Hp Z2 Tower G5
CVE-2023-45627
An authenticated Denial-of-Service (DoS) vulnerability exists in the CLI service. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affecte...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45626
An authenticated vulnerability has been identified allowing an attacker to effectively establish highly privileged persistent arbitrary code execution across boot cycles.
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45625
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45624
An unauthenticated Denial-of-Service (DoS) vulnerability exists in the soft ap daemon accessed via the PAPI protocol. Successful exploitation of this vulnerability results in the ability to interrupt ...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45623
Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Wi-Fi Uplink service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to inte...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45622
Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the BLE daemon service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to interr...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45621
Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the CLI service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to interrupt the...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45620
Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the CLI service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to interrupt the...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45619
There is an arbitrary file deletion vulnerability in the RSSI service accessed by PAPI (Aruba's access point management protocol). Successful exploitation of this vulnerability results in the ability ...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45618
There are arbitrary file deletion vulnerabilities in the AirWave client service accessed by PAPI (Aruba's access point management protocol). Successful exploitation of these vulnerabilities result in ...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45617
There are arbitrary file deletion vulnerabilities in the CLI service accessed by PAPI (Aruba's access point management protocol). Successful exploitation of these vulnerabilities result in the ability...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45616
There is a buffer overflow vulnerability in the underlying AirWave client service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Ar...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45615
There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's acce...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-45614
There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's acce...
Arubanetworks Arubaos>=10.3.0.0<10.4.0.3
Arubanetworks Arubaos=10.5.0.0
Hp Instantos>=6.4.0.0<8.6.0.23
Hp Instantos>=8.10.0.0<8.10.0.9
Hp Instantos>=8.11.0.0<8.11.2.0
CVE-2023-5739
Certain versions of HP PC Hardware Diagnostics Windows are potentially vulnerable to elevation of privilege.
HP Image Assistant<5.1.8
HP PC Hardware Diagnostics Windows<2.4.0.0
HP Thunderbolt Dock G2 Firmware
HP Thunderbolt Dock G2
CVE-2023-42027
IBM CICS TX cross-site request forgery
IBM TXSeries for Multiplatforms<=8.1
IBM TXSeries for Multiplatforms<=8.2
IBM TXSeries for Multiplatforms<=9.1
IBM TXSeries for Multiplatforms=8.1
IBM TXSeries for Multiplatforms=9.1
IBM AIX
and 7 more
CVE-2023-42029
IBM CICS TX cross-site scripting
IBM CICS TX Advanced<=10.1
IBM CICS TX Advanced<=11.1
IBM CICS TX Standard<=11.1
IBM TXSeries for Multiplatforms=8.1
IBM TXSeries for Multiplatforms=8.2
IBM TXSeries for Multiplatforms=9.1
and 7 more
CVE-2023-5671
HP Print and Scan Doctor for Windows may potentially be vulnerable to escalation of privilege. HP is releasing software updates to mitigate the potential vulnerability.
Hp Print And Scan Doctor=5.7.2.014
CVE-2023-26300
A potential security vulnerability has been identified in the system BIOS for certain HP PC products which might allow escalation of privilege. HP is releasing firmware updates to mitigate the potenti...
Hp Desktop Pro A 300 G3 Firmware<f.13
Hp Desktop Pro A 300 G3
Hp Desktop Pro A G3 Firmware<f.13
Hp Desktop Pro A G3
Hp Desktop Pro A G3 Microtower Firmware<f.13
Hp Desktop Pro A G3 Microtower
and 172 more
CVE-2023-5449
A potential security vulnerability has been identified in certain HP Displays supporting the Theft Deterrence feature which may allow a monitor’s Theft Deterrence to be deactivated.
Hp E22 G4 Fhd Firmware<1.0.3.0
Hp E22 G4 Fhd
Hp E23 G4 Fhd Firmware<1.0.3.0
Hp E23 G4 Fhd
Hp E24i G4 Wuxga Firmware<1.1.4.0
Hp E24i G4 Wuxga
and 52 more
CVE-2023-4499
A potential security vulnerability has been identified in the HP ThinUpdate utility (also known as HP Recovery Image and Software Download Tool) which may lead to information disclosure. HP is releasi...
HP ThinUpdate<2.7.15
Hp Elite Mt645
Hp Mt21
Hp Mt22
Hp Mt31
Hp Mt32
and 14 more
CVE-2023-5409
HP is aware of a potential security vulnerability in HP t430 and t638 Thin Client PCs. These models may be susceptible to a physical attack, allowing an untrusted source to tamper with the system firm...
Hp T430 Thin Client Firmware
Hp T430 Thin Client
Hp T638 Thin Client Firmware
Hp T638 Thin Client
CVE-2023-5365
HP LIFE Android Mobile application is potentially vulnerable to escalation of privilege and/or information disclosure.
HP LIFE Android<1.8
CVE-2023-5113
Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via jQuery-UI.
Hp Futuresmart 5<5.7
Hp Color Laserjet Enterprise 5700 49k98a
Hp Color Laserjet Enterprise 5700 6qn28a
Hp Color Laserjet Enterprise 6700 49l00a
Hp Color Laserjet Enterprise 6700 4y280a
Hp Color Laserjet Enterprise 6700 58m42a
and 1127 more
CVE-2023-30909
A remote authentication bypass issue exists in some OneView APIs.
HP OneView<8.30.01
CVE-2023-30908
A remote authentication bypass issue exists in a OneView API.
HP OneView<6.60.05
HP OneView>=7.0<8.5
CVE-2015-2202
Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows administrative users to escalate privileges to root on the underlying OS.
Arubanetworks Airwave>=7.0.0<7.7.14.2
Hp Airwave>=8.0.0.0<8.0.7
CVE-2015-2201
Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows VisualRF remote OS command execution and file disclosure by administrative users.
Arubanetworks Airwave>=7.0.0<7.7.14.2
Hp Airwave>=8.0.0.0<8.0.7
CVE-2015-1390
Aruba AirWave before 8.0.7 allows XSS attacks agsinat an administrator.
Hp Airwave>=8.0.0.0<8.0.7
CVE-2015-1391
Aruba AirWave before 8.0.7 allows bypass of a CSRF protection mechanism.
Hp Airwave>=8.0.0.0<8.0.7
CVE-2023-1995
Insufficient Logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Addtional Function, HiRDB Structured Data Access Facility.This issue affects HiRDB Server: before 09-60-39, before 09-65-2...
Hitachi Hirdb Server With Additional Function>=09-00<=09-00-2d
Hitachi Hirdb Server With Additional Function>=09-01<=09-01-\/x
Hitachi Hirdb Server With Additional Function>=09-02<=09-02-2f
Hitachi Hirdb Server With Additional Function>=09-03<=09-03-2a
Hitachi Hirdb Server With Additional Function>=09-04<=09-04-2s
Hitachi Hirdb Server With Additional Function>=09-50<=09-50-2k
and 40 more
CVE-2023-33850
IBM GSKit-Crypto could allow a remote attacker to obtain sensitive information, caused by a timing-based side channel in the RSA Decryption implementation. By sending an overly large number of trial ...
IBM TXSeries for Multiplatform=8.1
IBM TXSeries for Multiplatform=9.1
IBM AIX
Linux Linux kernel
IBM TXSeries for Multiplatform=8.2
HP HP-UX
and 4 more
CVE-2022-4894
Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element.
Hp 2zn49a Firmware
Hp 2zn49a
Hp 2zn50a Firmware
Hp 2zn50a
Hp 2ky38a Firmware
Hp 2ky38a
and 2037 more
CVE-2023-38401
A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client could allow local users to elevate privileges. Successful exploitation could allow execution of arbitrary code with NT ...
Hp Aruba Virtual Intranet Access<4.5.0
Microsoft Windows

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203