HP-UX
by HPE
CVEs (17)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-42500 | Cri | 0.60 | 9.3 | 0.00 | Sep 9, 2024 | HPE has identified a denial of service vulnerability in HPE HP-UX System's Network File System (NFSv4) services. | ||
| CVE-2016-2016 | Med | 0.36 | 5.5 | 0.00 | May 14, 2016 | Base-VxFS-50 B.05.00.01 through B.05.00.02, Base-VxFS-501 B.05.01.0 through B.05.01.03, and Base-VxFS-51 B.05.10.00 through B.05.10.02 on HPE HP-UX 11iv3 with VxFS 5.0, VxFS 5.0.1, and VxFS 5.1SP1 mishandles ACL inheritance for default:class: entries, default:other: entries, and… | ||
| CVE-2010-1039 | 0.05 | — | 0.22 | May 20, 2010 | Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code… | |||
| CVE-2012-0131 | 0.01 | — | 0.15 | Apr 5, 2012 | Distributed Computing Environment (DCE) 1.8 and 1.9 on HP HP-UX B.11.11 and B.11.23 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. | |||
| CVE-2015-2132 | 0.00 | — | 0.00 | Aug 22, 2015 | Unspecified vulnerability in the execve system-call implementation in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors. | |||
| CVE-2015-2126 | 0.00 | — | 0.00 | Jul 6, 2015 | Unspecified vulnerability in pppoec in HP HP-UX 11iv2 and 11iv3 allows local users to gain privileges by leveraging setuid permissions. | |||
| CVE-2014-7879 | 0.00 | — | 0.00 | Dec 10, 2014 | HP HP-UX B.11.11, B.11.23, and B.11.31, when the PAM configuration includes libpam_updbe, allows remote authenticated users to bypass authentication, and consequently execute arbitrary code, via unspecified vectors. | |||
| CVE-2014-7877 | 0.00 | — | 0.00 | Oct 30, 2014 | Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors. | |||
| CVE-2013-6209 | 0.00 | — | 0.00 | Mar 14, 2014 | Unspecified vulnerability in rpc.lockd in the NFS subsystem in HP HP-UX B.11.11 and B.11.23 allows remote attackers to cause a denial of service via unknown vectors. | |||
| CVE-2013-6200 | 0.00 | — | 0.00 | Mar 11, 2014 | Unspecified vulnerability in m4 in HP HP-UX B.11.23 and B.11.31 allows local users to obtain sensitive information or modify data via unknown vectors. | |||
| CVE-2012-0125 | 0.00 | — | 0.00 | Mar 28, 2012 | Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.31 allows local users to obtain access to diagnostic information via unknown vectors, a related issue to CVE-2012-0126. | |||
| CVE-2011-2398 | 0.00 | — | 0.00 | Jul 11, 2011 | Unspecified vulnerability in the dynamic loader in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges or cause a denial of service via unknown vectors. | |||
| CVE-2011-0891 | 0.00 | — | 0.00 | Apr 4, 2011 | Unspecified vulnerability in the OS-Core.CORE2-KRN fileset in HP HP-UX B.11.23 and B.11.31 allows local users to cause a denial of service via unknown vectors. | |||
| CVE-2010-4108 | 0.00 | — | 0.00 | Dec 8, 2010 | HP HP-UX B.11.11, B.11.23, and B.11.31 does not properly support threaded processes, which allows remote authenticated users to cause a denial of service via unspecified vectors. | |||
| CVE-2010-2712 | 0.00 | — | 0.00 | Aug 30, 2010 | Unspecified vulnerability in Software Distributor (sd) in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors. | |||
| CVE-2010-1032 | 0.00 | — | 0.00 | Apr 21, 2010 | Unspecified vulnerability in HP HP-UX B.11.11 allows local users to cause a denial of service via unknown vectors. | |||
| CVE-2010-1030 | 0.00 | — | 0.00 | Mar 31, 2010 | Unspecified vulnerability in HP-UX B.11.31, with AudFilter rules enabled, allows local users to cause a denial of service via unknown vectors. |
- risk 0.60cvss 9.3epss 0.00
HPE has identified a denial of service vulnerability in HPE HP-UX System's Network File System (NFSv4) services.
- risk 0.36cvss 5.5epss 0.00
Base-VxFS-50 B.05.00.01 through B.05.00.02, Base-VxFS-501 B.05.01.0 through B.05.01.03, and Base-VxFS-51 B.05.10.00 through B.05.10.02 on HPE HP-UX 11iv3 with VxFS 5.0, VxFS 5.0.1, and VxFS 5.1SP1 mishandles ACL inheritance for default:class: entries, default:other: entries, and…
- CVE-2010-1039May 20, 2010risk 0.05cvss —epss 0.22
Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code…
- CVE-2012-0131Apr 5, 2012risk 0.01cvss —epss 0.15
Distributed Computing Environment (DCE) 1.8 and 1.9 on HP HP-UX B.11.11 and B.11.23 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
- CVE-2015-2132Aug 22, 2015risk 0.00cvss —epss 0.00
Unspecified vulnerability in the execve system-call implementation in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors.
- CVE-2015-2126Jul 6, 2015risk 0.00cvss —epss 0.00
Unspecified vulnerability in pppoec in HP HP-UX 11iv2 and 11iv3 allows local users to gain privileges by leveraging setuid permissions.
- CVE-2014-7879Dec 10, 2014risk 0.00cvss —epss 0.00
HP HP-UX B.11.11, B.11.23, and B.11.31, when the PAM configuration includes libpam_updbe, allows remote authenticated users to bypass authentication, and consequently execute arbitrary code, via unspecified vectors.
- CVE-2014-7877Oct 30, 2014risk 0.00cvss —epss 0.00
Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors.
- CVE-2013-6209Mar 14, 2014risk 0.00cvss —epss 0.00
Unspecified vulnerability in rpc.lockd in the NFS subsystem in HP HP-UX B.11.11 and B.11.23 allows remote attackers to cause a denial of service via unknown vectors.
- CVE-2013-6200Mar 11, 2014risk 0.00cvss —epss 0.00
Unspecified vulnerability in m4 in HP HP-UX B.11.23 and B.11.31 allows local users to obtain sensitive information or modify data via unknown vectors.
- CVE-2012-0125Mar 28, 2012risk 0.00cvss —epss 0.00
Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.31 allows local users to obtain access to diagnostic information via unknown vectors, a related issue to CVE-2012-0126.
- CVE-2011-2398Jul 11, 2011risk 0.00cvss —epss 0.00
Unspecified vulnerability in the dynamic loader in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges or cause a denial of service via unknown vectors.
- CVE-2011-0891Apr 4, 2011risk 0.00cvss —epss 0.00
Unspecified vulnerability in the OS-Core.CORE2-KRN fileset in HP HP-UX B.11.23 and B.11.31 allows local users to cause a denial of service via unknown vectors.
- CVE-2010-4108Dec 8, 2010risk 0.00cvss —epss 0.00
HP HP-UX B.11.11, B.11.23, and B.11.31 does not properly support threaded processes, which allows remote authenticated users to cause a denial of service via unspecified vectors.
- CVE-2010-2712Aug 30, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Software Distributor (sd) in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors.
- CVE-2010-1032Apr 21, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in HP HP-UX B.11.11 allows local users to cause a denial of service via unknown vectors.
- CVE-2010-1030Mar 31, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in HP-UX B.11.31, with AudFilter rules enabled, allows local users to cause a denial of service via unknown vectors.