VYPR

Network Automation

by Microfocus

CVEs (12)

  • CVE-2016-1989CriMar 15, 2016
    risk 0.65cvss 9.8epss 0.11

    HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2016-1988.

  • CVE-2016-1988CriMar 15, 2016
    risk 0.65cvss 9.8epss 0.11

    HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2016-1989.

  • CVE-2018-6493HigMay 22, 2018
    risk 0.57cvss 8.8epss 0.02

    SQL Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11, 2018.02 and in Network Automation, version 10.00, 10.10, 10.11, 10.20, 10.30, 10.40, 10.50. This vulnerability could be remotely exploited to allow Remote SQL Injection.

  • CVE-2016-4386HigSep 29, 2016
    risk 0.51cvss 7.8epss 0.01

    HPE Network Automation Software 10.10 allows local users to write to arbitrary files via unspecified vectors.

  • CVE-2016-4385HigSep 29, 2016
    risk 0.48cvss 7.3epss 0.04

    The RMI service in HP Network Automation Software 9.1x, 9.2x, 10.0x before 10.00.02.01, and 10.1x before 10.11.00.01 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) and Commons BeanUtils…

  • CVE-2018-6492MedMay 22, 2018
    risk 0.31cvss 4.7epss 0.02

    Persistent Cross-Site Scripting, and non-persistent HTML Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11, 2018.02 and in Network Automation, version 10.00, 10.10, 10.11, 10.20, 10.30, 10.40, 10.50. This vulnerability could be remotely exploited…

  • CVE-2011-2403Aug 1, 2011
    risk 0.03cvss epss 0.02

    SQL injection vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

  • CVE-2011-4790Feb 2, 2012
    risk 0.01cvss epss 0.09

    Unspecified vulnerability in HP Network Automation 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to execute arbitrary code via unknown vectors.

  • CVE-2021-38123Sep 7, 2021
    risk 0.00cvss epss 0.01

    Open Redirect vulnerability in Micro Focus Network Automation, affecting Network Automation versions 10.4x, 10.5x, 2018.05, 2018.11, 2019.05, 2020.02, 2020.08, 2020.11, 2021.05. The vulnerability could allow redirect users to malicious websites after authentication.

  • CVE-2014-2646Oct 10, 2014
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in HP Network Automation 9.10 and 9.20 allows local users to bypass intended access restrictions via unknown vectors.

  • CVE-2011-2402Aug 1, 2011
    risk 0.00cvss epss 0.03

    Cross-site scripting (XSS) vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2011-1725Apr 27, 2011
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to obtain sensitive information via unknown vectors.