VYPR
Vendor

Atos Eviden

Products
6
CVEs
7
Across products
8
Status
Private

Products

6

Recent CVEs

7
  • CVE-2024-42017CriSep 30, 2024
    risk 0.65cvss 10.0epss 0.01

    An issue was discovered in Atos Eviden iCare 2.7.1 through 2.7.11. The application exposes a web interface locally. In the worst-case scenario, if the application is remotely accessible, it allows an attacker to execute arbitrary commands with system privilege on the endpoint…

  • CVE-2024-39327CriFeb 18, 2025
    risk 0.64cvss 9.9epss 0.00

    Incorrect Access Control vulnerability in Atos Eviden IDRA before 2.6.1 could allow the possibility to obtain CA signing in an illegitimate way.

  • CVE-2024-51505HigFeb 18, 2025
    risk 0.52cvss 8.0epss 0.00

    An issue was discovered in Atos Eviden IDRA before 2.7.1. A highly trusted role (Config Admin) could leverage a race condition to escalate privileges.

  • CVE-2023-41099HigMar 22, 2024
    risk 0.51cvss 7.8epss 0.00

    In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.(from a regular user to SYSTEM).

  • CVE-2024-46933HigFeb 20, 2025
    risk 0.50cvss 7.7epss 0.00

    An issue was discovered in Atos Eviden BullSequana XH2140 BMC before C4EM-125: OMF_C4E 101.05.0014. Some BullSequana XH products were shipped without proper hardware programming, leading to a potential denial-of-service with privileged access.

  • CVE-2024-42018HigOct 11, 2024
    risk 0.50cvss 7.7epss 0.00

    An issue was discovered in Atos Eviden SMC xScale before 1.6.6. During initialization of nodes, some configuration parameters are retrieved from management nodes. These parameters embed credentials whose integrity and confidentiality may be important to the security of the HPC…

  • CVE-2024-39328MedFeb 18, 2025
    risk 0.44cvss 6.8epss 0.00

    Insecure Permissions in Atos Eviden IDRA and IDCA before 2.7.0. A highly trusted role (Config Admin) could exceed their configuration privileges in a multi-partition environment and access some confidential data. Data integrity and availability is not at risk.