Vendor CVEs
Microfocus
All CVEs
2,272 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2011-3155 | 0.00 | — | 0.02 | Oct 12, 2011 | Unspecified vulnerability in HP Onboard Administrator (OA) 3.21 through 3.31 allows remote attackers to bypass intended access restrictions via unknown vectors. | |||
| CVE-2011-2411 | 0.00 | — | 0.06 | Oct 2, 2011 | Unspecified vulnerability on HP NonStop Servers with software H06.x through H06.23.00 and J06.x through J06.12.00, when Samba is used, allows remote authenticated users to execute arbitrary code via unknown vectors. | |||
| CVE-2009-5097 | 0.00 | — | 0.02 | Sep 13, 2011 | Palm Pre WebOS 1.1 and earlier processes JavaScript in email messages, which allows remote attackers to execute arbitrary JavaScript, as demonstrated by reading PalmDatabase.db3. | |||
| CVE-2011-2410 | 0.00 | — | 0.01 | Aug 19, 2011 | Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-2409 | 0.00 | — | 0.01 | Aug 11, 2011 | Cross-site scripting (XSS) vulnerability in the Calendar application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-2408 | 0.00 | — | 0.01 | Aug 11, 2011 | Cross-site scripting (XSS) vulnerability in the Contacts application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-2407 | 0.00 | — | 0.03 | Aug 11, 2011 | Unspecified vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote attackers to obtain access via unknown vectors. | |||
| CVE-2011-2406 | 0.00 | — | 0.01 | Aug 11, 2011 | Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-2405 | 0.00 | — | 0.02 | Aug 11, 2011 | The HP ProLiant SL Advanced Power Manager (SL-APM) with firmware before 1.20 does not properly validate users, which allows remote attackers to cause a denial of service via unspecified vectors. | |||
| CVE-2011-2402 | 0.00 | — | 0.03 | Aug 1, 2011 | Cross-site scripting (XSS) vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-2399 | 0.00 | — | 0.05 | Aug 1, 2011 | Unspecified vulnerability in the Media Management Daemon (mmd) in HP Data Protector 6.11 and earlier allows remote attackers to cause a denial of service via unknown vectors. | |||
| CVE-2011-2401 | 0.00 | — | 0.04 | Jul 29, 2011 | Session fixation vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to hijack web sessions via unspecified vectors. | |||
| CVE-2011-2400 | 0.00 | — | 0.03 | Jul 29, 2011 | Cross-site scripting (XSS) vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-2779 | 0.00 | — | 0.01 | Jul 19, 2011 | Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770. | |||
| CVE-2011-0770 | 0.00 | — | 0.04 | Jul 19, 2011 | Cross-site scripting (XSS) vulnerability in Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 allows remote attackers to inject arbitrary web script or HTML via the Windows XP variable in a file. | |||
| CVE-2011-2398 | 0.00 | — | 0.00 | Jul 11, 2011 | Unspecified vulnerability in the dynamic loader in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges or cause a denial of service via unknown vectors. | |||
| CVE-2011-2608 | 0.00 | — | 0.05 | Jul 1, 2011 | ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register… | |||
| CVE-2011-1515 | 0.00 | — | 0.04 | Jul 1, 2011 | The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (daemon exit) via a request containing crafted parameters. | |||
| CVE-2011-1514 | 0.00 | — | 0.04 | Jul 1, 2011 | The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request containing crafted parameters. | |||
| CVE-2011-1863 | 0.00 | — | 0.01 | Jun 14, 2011 | HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allow remote authenticated users to conduct unspecified script injection attacks via unknown vectors. | |||
| CVE-2011-1862 | 0.00 | — | 0.02 | Jun 14, 2011 | Cross-site scripting (XSS) vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-1861 | 0.00 | — | 0.02 | Jun 14, 2011 | Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to modify data or obtain sensitive information via unknown vectors. | |||
| CVE-2011-1860 | 0.00 | — | 0.02 | Jun 14, 2011 | Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to capture HTTP session credentials via unknown vectors. | |||
| CVE-2011-1859 | 0.00 | — | 0.02 | Jun 14, 2011 | Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to obtain sensitive information via unknown vectors. | |||
| CVE-2011-1858 | 0.00 | — | 0.00 | Jun 14, 2011 | Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows local users to bypass intended access restrictions via unknown vectors. | |||
| CVE-2011-1857 | 0.00 | — | 0.02 | Jun 14, 2011 | Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote authenticated users to bypass intended access restrictions via unknown vectors. | |||
| CVE-2011-2328 | 0.00 | — | 0.06 | Jun 2, 2011 | Buffer overflow in HP LoadRunner allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a .usr (aka Virtual User script) file with long directives. | |||
| CVE-2011-1856 | 0.00 | — | 0.02 | May 16, 2011 | Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 8.06 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-1855 | 0.00 | — | 0.00 | May 13, 2011 | Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x allows local users to read or modify (1) log files or (2) other data via unknown vectors. | |||
| CVE-2011-1738 | 0.00 | — | 0.00 | May 13, 2011 | HP Palm webOS 1.4.5 and 1.4.5.1 does not properly restrict Plug-in Development Kit (PDK) applications, which allows local users to gain privileges by leveraging unintended filesystem write access. | |||
| CVE-2011-1737 | 0.00 | — | 0.02 | May 13, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in the Email application in HP Palm webOS 1.4.5 and 1.4.5.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-1727 | 0.00 | — | 0.02 | May 3, 2011 | Cross-site scripting (XSS) vulnerability in HP SiteScope 9.54, 10.13, 11.01, and 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to an "HTML injection" issue. | |||
| CVE-2011-1726 | 0.00 | — | 0.03 | May 3, 2011 | Cross-site scripting (XSS) vulnerability in HP SiteScope 9.54, 10.13, 11.01, and 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-1724 | 0.00 | — | 0.02 | May 3, 2011 | Unspecified vulnerability in HP Virtual Server Environment before 6.3 allows remote authenticated users to gain privileges via unknown vectors. | |||
| CVE-2011-1545 | 0.00 | — | 0.02 | May 3, 2011 | Cross-site request forgery (CSRF) vulnerability in HP Insight Control Performance Management before 6.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. | |||
| CVE-2011-1544 | 0.00 | — | 0.02 | May 3, 2011 | Unspecified vulnerability in HP Insight Control Performance Management before 6.3 allows remote authenticated users to gain privileges via unknown vectors. | |||
| CVE-2011-1539 | 0.00 | — | 0.02 | May 3, 2011 | Unspecified vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote attackers to obtain sensitive information via unknown vectors. | |||
| CVE-2011-1538 | 0.00 | — | 0.01 | May 3, 2011 | Open redirect vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote authenticated users to redirect other users to arbitrary web sites and conduct phishing attacks via unspecified vectors. | |||
| CVE-2011-1537 | 0.00 | — | 0.02 | May 3, 2011 | Cross-site scripting (XSS) vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-1543 | 0.00 | — | 0.01 | Apr 29, 2011 | Cross-site request forgery (CSRF) vulnerability in HP Systems Insight Manager (SIM) before 6.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. | |||
| CVE-2011-1542 | 0.00 | — | 0.02 | Apr 29, 2011 | Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 6.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-1540 | 0.00 | — | 0.05 | Apr 29, 2011 | Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote authenticated users to execute arbitrary code via unknown vectors. | |||
| CVE-2011-1536 | 0.00 | — | 0.02 | Apr 29, 2011 | Unspecified vulnerability in HP Performance Insight 5.0, 5.1x. 5.2x, 5.3x, 5.4, 5.41, and 5.41.002 allows remote attackers to obtain sensitive information via unknown vectors. | |||
| CVE-2011-1535 | 0.00 | — | 0.02 | Apr 29, 2011 | Unspecified vulnerability in HP Insight Control for Linux (aka IC-Linux) before 6.3 allows remote authenticated users to obtain sensitive information, modify data, or cause a denial of service via unknown vectors. | |||
| CVE-2011-1725 | 0.00 | — | 0.02 | Apr 27, 2011 | Unspecified vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to obtain sensitive information via unknown vectors. | |||
| CVE-2011-1534 | 0.00 | — | 0.01 | Apr 22, 2011 | Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x allows remote authenticated users to obtain access to processes via unknown vectors. | |||
| CVE-2009-5071 | 0.00 | — | 0.02 | Apr 19, 2011 | Unspecified vulnerability in Palm Pre WebOS before 1.2.1 has unknown impact and attack vectors related to an "included contact template file." | |||
| CVE-2011-1533 | 0.00 | — | 0.02 | Apr 15, 2011 | Cross-site scripting (XSS) vulnerability on the HP Photosmart D110 and B110; Photosmart Plus B210; Photosmart Premium C310, Fax All-in-One, and C510; and ENVY 100 D410 printers allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2011-1532 | 0.00 | — | 0.03 | Apr 15, 2011 | Unspecified vulnerability in the SNMP component on the HP Photosmart D110 and B110; Photosmart Plus B210; Photosmart Premium C310, Fax All-in-One, and C510; and ENVY 100 D410 printers allows remote attackers to obtain sensitive information or modify data via vectors related to… | |||
| CVE-2011-1531 | 0.00 | — | 0.02 | Apr 15, 2011 | The webscan component in the Embedded Web Server (EWS) on the HP Photosmart D110 and B110; Photosmart Plus B210; Photosmart Premium C310, Fax All-in-One, and C510; and ENVY 100 D410 printers allows remote attackers to read documents on the scan surface via unspecified vectors. |
- CVE-2011-3155Oct 12, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Onboard Administrator (OA) 3.21 through 3.31 allows remote attackers to bypass intended access restrictions via unknown vectors.
- CVE-2011-2411Oct 2, 2011risk 0.00cvss —epss 0.06
Unspecified vulnerability on HP NonStop Servers with software H06.x through H06.23.00 and J06.x through J06.12.00, when Samba is used, allows remote authenticated users to execute arbitrary code via unknown vectors.
- CVE-2009-5097Sep 13, 2011risk 0.00cvss —epss 0.02
Palm Pre WebOS 1.1 and earlier processes JavaScript in email messages, which allows remote attackers to execute arbitrary JavaScript, as demonstrated by reading PalmDatabase.db3.
- CVE-2011-2410Aug 19, 2011risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-2409Aug 11, 2011risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in the Calendar application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-2408Aug 11, 2011risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in the Contacts application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-2407Aug 11, 2011risk 0.00cvss —epss 0.03
Unspecified vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote attackers to obtain access via unknown vectors.
- CVE-2011-2406Aug 11, 2011risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-2405Aug 11, 2011risk 0.00cvss —epss 0.02
The HP ProLiant SL Advanced Power Manager (SL-APM) with firmware before 1.20 does not properly validate users, which allows remote attackers to cause a denial of service via unspecified vectors.
- CVE-2011-2402Aug 1, 2011risk 0.00cvss —epss 0.03
Cross-site scripting (XSS) vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-2399Aug 1, 2011risk 0.00cvss —epss 0.05
Unspecified vulnerability in the Media Management Daemon (mmd) in HP Data Protector 6.11 and earlier allows remote attackers to cause a denial of service via unknown vectors.
- CVE-2011-2401Jul 29, 2011risk 0.00cvss —epss 0.04
Session fixation vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to hijack web sessions via unspecified vectors.
- CVE-2011-2400Jul 29, 2011risk 0.00cvss —epss 0.03
Cross-site scripting (XSS) vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-2779Jul 19, 2011risk 0.00cvss —epss 0.01
Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770.
- CVE-2011-0770Jul 19, 2011risk 0.00cvss —epss 0.04
Cross-site scripting (XSS) vulnerability in Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 allows remote attackers to inject arbitrary web script or HTML via the Windows XP variable in a file.
- CVE-2011-2398Jul 11, 2011risk 0.00cvss —epss 0.00
Unspecified vulnerability in the dynamic loader in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges or cause a denial of service via unknown vectors.
- CVE-2011-2608Jul 1, 2011risk 0.00cvss —epss 0.05
ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register…
- CVE-2011-1515Jul 1, 2011risk 0.00cvss —epss 0.04
The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (daemon exit) via a request containing crafted parameters.
- CVE-2011-1514Jul 1, 2011risk 0.00cvss —epss 0.04
The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request containing crafted parameters.
- CVE-2011-1863Jun 14, 2011risk 0.00cvss —epss 0.01
HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allow remote authenticated users to conduct unspecified script injection attacks via unknown vectors.
- CVE-2011-1862Jun 14, 2011risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-1861Jun 14, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to modify data or obtain sensitive information via unknown vectors.
- CVE-2011-1860Jun 14, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to capture HTTP session credentials via unknown vectors.
- CVE-2011-1859Jun 14, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to obtain sensitive information via unknown vectors.
- CVE-2011-1858Jun 14, 2011risk 0.00cvss —epss 0.00
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows local users to bypass intended access restrictions via unknown vectors.
- CVE-2011-1857Jun 14, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote authenticated users to bypass intended access restrictions via unknown vectors.
- CVE-2011-2328Jun 2, 2011risk 0.00cvss —epss 0.06
Buffer overflow in HP LoadRunner allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a .usr (aka Virtual User script) file with long directives.
- CVE-2011-1856May 16, 2011risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 8.06 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-1855May 13, 2011risk 0.00cvss —epss 0.00
Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x allows local users to read or modify (1) log files or (2) other data via unknown vectors.
- CVE-2011-1738May 13, 2011risk 0.00cvss —epss 0.00
HP Palm webOS 1.4.5 and 1.4.5.1 does not properly restrict Plug-in Development Kit (PDK) applications, which allows local users to gain privileges by leveraging unintended filesystem write access.
- CVE-2011-1737May 13, 2011risk 0.00cvss —epss 0.02
Multiple cross-site scripting (XSS) vulnerabilities in the Email application in HP Palm webOS 1.4.5 and 1.4.5.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-1727May 3, 2011risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in HP SiteScope 9.54, 10.13, 11.01, and 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to an "HTML injection" issue.
- CVE-2011-1726May 3, 2011risk 0.00cvss —epss 0.03
Cross-site scripting (XSS) vulnerability in HP SiteScope 9.54, 10.13, 11.01, and 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-1724May 3, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Virtual Server Environment before 6.3 allows remote authenticated users to gain privileges via unknown vectors.
- CVE-2011-1545May 3, 2011risk 0.00cvss —epss 0.02
Cross-site request forgery (CSRF) vulnerability in HP Insight Control Performance Management before 6.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
- CVE-2011-1544May 3, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Insight Control Performance Management before 6.3 allows remote authenticated users to gain privileges via unknown vectors.
- CVE-2011-1539May 3, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote attackers to obtain sensitive information via unknown vectors.
- CVE-2011-1538May 3, 2011risk 0.00cvss —epss 0.01
Open redirect vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote authenticated users to redirect other users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
- CVE-2011-1537May 3, 2011risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-1543Apr 29, 2011risk 0.00cvss —epss 0.01
Cross-site request forgery (CSRF) vulnerability in HP Systems Insight Manager (SIM) before 6.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
- CVE-2011-1542Apr 29, 2011risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 6.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-1540Apr 29, 2011risk 0.00cvss —epss 0.05
Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote authenticated users to execute arbitrary code via unknown vectors.
- CVE-2011-1536Apr 29, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Performance Insight 5.0, 5.1x. 5.2x, 5.3x, 5.4, 5.41, and 5.41.002 allows remote attackers to obtain sensitive information via unknown vectors.
- CVE-2011-1535Apr 29, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Insight Control for Linux (aka IC-Linux) before 6.3 allows remote authenticated users to obtain sensitive information, modify data, or cause a denial of service via unknown vectors.
- CVE-2011-1725Apr 27, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to obtain sensitive information via unknown vectors.
- CVE-2011-1534Apr 22, 2011risk 0.00cvss —epss 0.01
Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x allows remote authenticated users to obtain access to processes via unknown vectors.
- CVE-2009-5071Apr 19, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in Palm Pre WebOS before 1.2.1 has unknown impact and attack vectors related to an "included contact template file."
- CVE-2011-1533Apr 15, 2011risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability on the HP Photosmart D110 and B110; Photosmart Plus B210; Photosmart Premium C310, Fax All-in-One, and C510; and ENVY 100 D410 printers allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2011-1532Apr 15, 2011risk 0.00cvss —epss 0.03
Unspecified vulnerability in the SNMP component on the HP Photosmart D110 and B110; Photosmart Plus B210; Photosmart Premium C310, Fax All-in-One, and C510; and ENVY 100 D410 printers allows remote attackers to obtain sensitive information or modify data via vectors related to…
- CVE-2011-1531Apr 15, 2011risk 0.00cvss —epss 0.02
The webscan component in the Embedded Web Server (EWS) on the HP Photosmart D110 and B110; Photosmart Plus B210; Photosmart Premium C310, Fax All-in-One, and C510; and ENVY 100 D410 printers allows remote attackers to read documents on the scan surface via unspecified vectors.
Page 35 of 46