Vendor CVEs
Microfocus
All CVEs
2,278 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2010-3988 | 0.00 | — | 0.02 | Oct 28, 2010 | Unspecified vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to bypass intended access restrictions and cause a denial of service via unknown vectors. | |||
| CVE-2010-3987 | 0.00 | — | 0.01 | Oct 28, 2010 | Cross-site scripting (XSS) vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2010-3985 | 0.00 | — | 0.02 | Oct 26, 2010 | Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9.0, when Internet Explorer 6.0 is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2010-3986 | 0.00 | — | 0.02 | Oct 26, 2010 | Unspecified vulnerability in HP Virtual Connect Enterprise Manager (VCEM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors. | |||
| CVE-2010-3290 | 0.00 | — | 0.01 | Oct 23, 2010 | Unspecified vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote authenticated users to gain privileges via unknown vectors. | |||
| CVE-2010-3289 | 0.00 | — | 0.02 | Oct 23, 2010 | Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2010-3288 | 0.00 | — | 0.01 | Oct 23, 2010 | Cross-site request forgery (CSRF) vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. | |||
| CVE-2010-3291 | 0.00 | — | 0.02 | Oct 21, 2010 | Cross-site scripting (XSS) vulnerability in HP AssetCenter 5.0x through AC_5.03, and AssetManager 5.1x through AM_5.12 and 5.2x through AM_5.22, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2010-3287 | 0.00 | — | 0.02 | Oct 18, 2010 | Unspecified vulnerability on HP ProCurve Access Points, Access Controllers, and Mobility Controllers with software 5.1.x through 5.1.9, 5.2.x through 5.2.7, 5.3.x through 5.3.5, and 5.4.x through 5.4.0 allows remote attackers to execute arbitrary code via unknown vectors. | |||
| CVE-2010-3286 | 0.00 | — | 0.03 | Oct 18, 2010 | Unspecified vulnerability in HP Systems Insight Manager (SIM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors. | |||
| CVE-2010-3285 | 0.00 | — | 0.03 | Sep 24, 2010 | Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to cause a denial of service via unknown vectors. | |||
| CVE-2010-3284 | 0.00 | — | 0.02 | Sep 24, 2010 | Unspecified vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to obtain sensitive information via unknown vectors. | |||
| CVE-2010-3283 | 0.00 | — | 0.01 | Sep 24, 2010 | Open redirect vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. | |||
| CVE-2010-3012 | 0.00 | — | 0.02 | Sep 17, 2010 | Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this issue was originally assigned CVE-2010-3010 due to a CNA error. | |||
| CVE-2010-3011 | 0.00 | — | 0.04 | Sep 17, 2010 | CRLF injection vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors. | |||
| CVE-2010-3010 | 0.00 | — | 0.01 | Sep 15, 2010 | Cross-site scripting (XSS) vulnerability on the HP 3Com OfficeConnect Gigabit VPN Firewall 3CREVF100-73 with firmware before 1.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: a separate XSS issue for HP System Management… | |||
| CVE-2010-3009 | 0.00 | — | 0.03 | Sep 15, 2010 | Unspecified vulnerability in HP System Management Homepage (SMH) for Linux 6.0 and 6.1 allows remote authenticated users to obtain sensitive information and gain root privileges via unknown vectors. | |||
| CVE-2010-3008 | 0.00 | — | 0.01 | Sep 13, 2010 | Unspecified vulnerability in HP Data Protector Express, and Data Protector Express Single Server Edition (SSE), 3.x before build 56936 and 4.x before build 56906 on Windows allows local users to gain privileges or cause a denial of service via unknown vectors, a different… | |||
| CVE-2010-3006 | 0.00 | — | 0.02 | Sep 10, 2010 | Unspecified vulnerability on the HP ProLiant G6 Lights-Out 100 Remote Management card with firmware before 4.06 allows remote attackers to cause a denial of service via unknown vectors. | |||
| CVE-2010-3005 | 0.00 | — | 0.00 | Sep 8, 2010 | Unspecified vulnerability in HP Operations Agent 7.36 and 8.6 on Windows allows local users to gain privileges via unknown vectors. | |||
| CVE-2010-3004 | 0.00 | — | 0.05 | Sep 8, 2010 | Unspecified vulnerability in HP Operations Agent 7.36 and 8.6 on Windows allows remote attackers to execute arbitrary code via unknown vectors. | |||
| CVE-2010-2712 | 0.00 | — | 0.00 | Aug 30, 2010 | Unspecified vulnerability in Software Distributor (sd) in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors. | |||
| CVE-2010-2711 | 0.00 | — | 0.02 | Aug 25, 2010 | Unspecified vulnerability in the HP MagCloud app before 1.0.5 for the iPad allows remote attackers to read and modify MagCloud application data via unknown vectors. | |||
| CVE-2010-2708 | 0.00 | — | 0.01 | Aug 9, 2010 | Unspecified vulnerability on the HP ProCurve 2610 switch before R.11.22, when DHCP is enabled, allows remote attackers to cause a denial of service via unknown vectors. | |||
| CVE-2010-2707 | 0.00 | — | 0.01 | Aug 9, 2010 | Unspecified vulnerability on the HP ProCurve 2626 and 2650 switches before H.10.80 allows remote attackers to obtain sensitive information, modify data, and cause a denial of service via unknown vectors. | |||
| CVE-2010-2706 | 0.00 | — | 0.01 | Aug 9, 2010 | Unspecified vulnerability in the In-band Agent on the HP ProCurve 2610 switch before R.11.30 allows remote attackers to cause a denial of service via unknown vectors. | |||
| CVE-2010-2705 | 0.00 | — | 0.01 | Aug 9, 2010 | Unspecified vulnerability on the HP ProCurve 1800-24G switch with software PB.03.02 and earlier, and the ProCurve 1800-8G switch with software PA.03.02 and earlier, when SNMP is enabled, allows remote attackers to obtain sensitive information via unknown vectors. | |||
| CVE-2010-1973 | 0.00 | — | 0.00 | Jul 22, 2010 | Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users to gain privileges or obtain sensitive information via unknown vectors. | |||
| CVE-2010-1972 | 0.00 | — | 0.03 | Jul 22, 2010 | The default configuration of HP Client Automation (HPCA) Enterprise Infrastructure (aka Radia) allows remote attackers to read log files, and consequently cause a denial of service or have unspecified other impact, via web requests. | |||
| CVE-2010-1969 | 0.00 | — | 0.02 | Jul 22, 2010 | Cross-site scripting (XSS) vulnerability in HP Virtual Connect Enterprise Manager for Windows before 6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. | |||
| CVE-2010-1971 | 0.00 | — | 0.01 | Jul 15, 2010 | Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, a different vulnerability than CVE-2010-1968. | |||
| CVE-2010-1970 | 0.00 | — | 0.00 | Jul 15, 2010 | Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data, and consequently gain privileges, via unknown vectors. | |||
| CVE-2010-1968 | 0.00 | — | 0.01 | Jul 15, 2010 | Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, a different vulnerability than CVE-2010-1971. | |||
| CVE-2010-1967 | 0.00 | — | 0.00 | Jul 15, 2010 | Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data via unknown vectors. | |||
| CVE-2010-1966 | 0.00 | — | 0.01 | Jul 15, 2010 | Unspecified vulnerability in HP Insight Control power management for Windows before 6.1 allows local users to read or modify data, or cause a denial of service, via unknown vectors. | |||
| CVE-2010-1965 | 0.00 | — | 0.02 | Jul 15, 2010 | Unspecified vulnerability in HP Insight Orchestration for Windows before 6.1 allows remote attackers to read or modify data via unknown vectors. | |||
| CVE-2010-2612 | 0.00 | — | 0.00 | Jul 2, 2010 | Unspecified vulnerability in the HP OpenVMS Auditing feature in OpenVMS ALPHA 7.3-2, 8.2, and 8.3; and OpenVMS for Integrity Servers 8.3 AND 8.3-1H1; allows local users to obtain sensitive information via unknown vectors. | |||
| CVE-2010-1963 | 0.00 | — | 0.01 | Jun 7, 2010 | Cross-site scripting (XSS) vulnerability in HP ServiceCenter allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2010-1959 | 0.00 | — | 0.02 | May 27, 2010 | Unspecified vulnerability in HP TestDirector for Quality Center 9.2 before Patch8 allows remote attackers to modify data via unknown vectors. | |||
| CVE-2010-1557 | 0.00 | — | 0.01 | May 14, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in HP Insight Control Server Migration before 6.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2010-1556 | 0.00 | — | 0.02 | May 14, 2010 | Unspecified vulnerability in HP Systems Insight Manager (SIM) 5.3, 5.3 Update 1, and 6.0 allows remote attackers to obtain sensitive information and modify data via unknown vectors. | |||
| CVE-2010-1558 | 0.00 | — | 0.00 | May 14, 2010 | Unspecified vulnerability in HP Multifunction Peripheral (MFP) Digital Sending Software before 4.18.3 allows local users to bypass intended restrictions on the MFP "Send to e-mail" feature, and obtain sensitive information, via unknown vectors. | |||
| CVE-2010-1038 | 0.00 | — | 0.02 | Apr 28, 2010 | Unspecified vulnerability in HP System Insight Manager before 6.0 allows remote authenticated users to gain privileges via unknown vectors. | |||
| CVE-2010-1037 | 0.00 | — | 0.02 | Apr 28, 2010 | Cross-site request forgery (CSRF) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. | |||
| CVE-2010-1036 | 0.00 | — | 0.03 | Apr 28, 2010 | Cross-site scripting (XSS) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||
| CVE-2010-1035 | 0.00 | — | 0.05 | Apr 23, 2010 | Multiple unspecified vulnerabilities in HP Virtual Machine Manager (VMM) before 6.0 allow remote authenticated users to execute arbitrary code via unknown vectors. | |||
| CVE-2010-1034 | 0.00 | — | 0.02 | Apr 23, 2010 | Unspecified vulnerability in HP System Management Homepage (SMH) 6.0 before 6.0.0-95 on Linux, and 6.0 before 6.0.0.96 on Windows, allows remote authenticated users to obtain sensitive information, modify data, and cause a denial of service via unknown vectors. | |||
| CVE-2010-1032 | 0.00 | — | 0.01 | Apr 21, 2010 | Unspecified vulnerability in HP HP-UX B.11.11 allows local users to cause a denial of service via unknown vectors. | |||
| CVE-2010-1031 | 0.00 | — | 0.00 | Apr 1, 2010 | Unspecified vulnerability in HP Insight Control for Linux (aka IC-Linux or ICE-LX) 2.11 and earlier allows local users to gain privileges via unknown vectors. | |||
| CVE-2010-1030 | 0.00 | — | 0.00 | Mar 31, 2010 | Unspecified vulnerability in HP-UX B.11.31, with AudFilter rules enabled, allows local users to cause a denial of service via unknown vectors. |
- CVE-2010-3988Oct 28, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to bypass intended access restrictions and cause a denial of service via unknown vectors.
- CVE-2010-3987Oct 28, 2010risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2010-3985Oct 26, 2010risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9.0, when Internet Explorer 6.0 is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2010-3986Oct 26, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Virtual Connect Enterprise Manager (VCEM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors.
- CVE-2010-3290Oct 23, 2010risk 0.00cvss —epss 0.01
Unspecified vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote authenticated users to gain privileges via unknown vectors.
- CVE-2010-3289Oct 23, 2010risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2010-3288Oct 23, 2010risk 0.00cvss —epss 0.01
Cross-site request forgery (CSRF) vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
- CVE-2010-3291Oct 21, 2010risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in HP AssetCenter 5.0x through AC_5.03, and AssetManager 5.1x through AM_5.12 and 5.2x through AM_5.22, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2010-3287Oct 18, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability on HP ProCurve Access Points, Access Controllers, and Mobility Controllers with software 5.1.x through 5.1.9, 5.2.x through 5.2.7, 5.3.x through 5.3.5, and 5.4.x through 5.4.0 allows remote attackers to execute arbitrary code via unknown vectors.
- CVE-2010-3286Oct 18, 2010risk 0.00cvss —epss 0.03
Unspecified vulnerability in HP Systems Insight Manager (SIM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors.
- CVE-2010-3285Sep 24, 2010risk 0.00cvss —epss 0.03
Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to cause a denial of service via unknown vectors.
- CVE-2010-3284Sep 24, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to obtain sensitive information via unknown vectors.
- CVE-2010-3283Sep 24, 2010risk 0.00cvss —epss 0.01
Open redirect vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
- CVE-2010-3012Sep 17, 2010risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this issue was originally assigned CVE-2010-3010 due to a CNA error.
- CVE-2010-3011Sep 17, 2010risk 0.00cvss —epss 0.04
CRLF injection vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
- CVE-2010-3010Sep 15, 2010risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability on the HP 3Com OfficeConnect Gigabit VPN Firewall 3CREVF100-73 with firmware before 1.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: a separate XSS issue for HP System Management…
- CVE-2010-3009Sep 15, 2010risk 0.00cvss —epss 0.03
Unspecified vulnerability in HP System Management Homepage (SMH) for Linux 6.0 and 6.1 allows remote authenticated users to obtain sensitive information and gain root privileges via unknown vectors.
- CVE-2010-3008Sep 13, 2010risk 0.00cvss —epss 0.01
Unspecified vulnerability in HP Data Protector Express, and Data Protector Express Single Server Edition (SSE), 3.x before build 56936 and 4.x before build 56906 on Windows allows local users to gain privileges or cause a denial of service via unknown vectors, a different…
- CVE-2010-3006Sep 10, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability on the HP ProLiant G6 Lights-Out 100 Remote Management card with firmware before 4.06 allows remote attackers to cause a denial of service via unknown vectors.
- CVE-2010-3005Sep 8, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in HP Operations Agent 7.36 and 8.6 on Windows allows local users to gain privileges via unknown vectors.
- CVE-2010-3004Sep 8, 2010risk 0.00cvss —epss 0.05
Unspecified vulnerability in HP Operations Agent 7.36 and 8.6 on Windows allows remote attackers to execute arbitrary code via unknown vectors.
- CVE-2010-2712Aug 30, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Software Distributor (sd) in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors.
- CVE-2010-2711Aug 25, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability in the HP MagCloud app before 1.0.5 for the iPad allows remote attackers to read and modify MagCloud application data via unknown vectors.
- CVE-2010-2708Aug 9, 2010risk 0.00cvss —epss 0.01
Unspecified vulnerability on the HP ProCurve 2610 switch before R.11.22, when DHCP is enabled, allows remote attackers to cause a denial of service via unknown vectors.
- CVE-2010-2707Aug 9, 2010risk 0.00cvss —epss 0.01
Unspecified vulnerability on the HP ProCurve 2626 and 2650 switches before H.10.80 allows remote attackers to obtain sensitive information, modify data, and cause a denial of service via unknown vectors.
- CVE-2010-2706Aug 9, 2010risk 0.00cvss —epss 0.01
Unspecified vulnerability in the In-band Agent on the HP ProCurve 2610 switch before R.11.30 allows remote attackers to cause a denial of service via unknown vectors.
- CVE-2010-2705Aug 9, 2010risk 0.00cvss —epss 0.01
Unspecified vulnerability on the HP ProCurve 1800-24G switch with software PB.03.02 and earlier, and the ProCurve 1800-8G switch with software PA.03.02 and earlier, when SNMP is enabled, allows remote attackers to obtain sensitive information via unknown vectors.
- CVE-2010-1973Jul 22, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users to gain privileges or obtain sensitive information via unknown vectors.
- CVE-2010-1972Jul 22, 2010risk 0.00cvss —epss 0.03
The default configuration of HP Client Automation (HPCA) Enterprise Infrastructure (aka Radia) allows remote attackers to read log files, and consequently cause a denial of service or have unspecified other impact, via web requests.
- CVE-2010-1969Jul 22, 2010risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in HP Virtual Connect Enterprise Manager for Windows before 6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
- CVE-2010-1971Jul 15, 2010risk 0.00cvss —epss 0.01
Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, a different vulnerability than CVE-2010-1968.
- CVE-2010-1970Jul 15, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data, and consequently gain privileges, via unknown vectors.
- CVE-2010-1968Jul 15, 2010risk 0.00cvss —epss 0.01
Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, a different vulnerability than CVE-2010-1971.
- CVE-2010-1967Jul 15, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data via unknown vectors.
- CVE-2010-1966Jul 15, 2010risk 0.00cvss —epss 0.01
Unspecified vulnerability in HP Insight Control power management for Windows before 6.1 allows local users to read or modify data, or cause a denial of service, via unknown vectors.
- CVE-2010-1965Jul 15, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Insight Orchestration for Windows before 6.1 allows remote attackers to read or modify data via unknown vectors.
- CVE-2010-2612Jul 2, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in the HP OpenVMS Auditing feature in OpenVMS ALPHA 7.3-2, 8.2, and 8.3; and OpenVMS for Integrity Servers 8.3 AND 8.3-1H1; allows local users to obtain sensitive information via unknown vectors.
- CVE-2010-1963Jun 7, 2010risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in HP ServiceCenter allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2010-1959May 27, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP TestDirector for Quality Center 9.2 before Patch8 allows remote attackers to modify data via unknown vectors.
- CVE-2010-1557May 14, 2010risk 0.00cvss —epss 0.01
Multiple cross-site scripting (XSS) vulnerabilities in HP Insight Control Server Migration before 6.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2010-1556May 14, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP Systems Insight Manager (SIM) 5.3, 5.3 Update 1, and 6.0 allows remote attackers to obtain sensitive information and modify data via unknown vectors.
- CVE-2010-1558May 14, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in HP Multifunction Peripheral (MFP) Digital Sending Software before 4.18.3 allows local users to bypass intended restrictions on the MFP "Send to e-mail" feature, and obtain sensitive information, via unknown vectors.
- CVE-2010-1038Apr 28, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP System Insight Manager before 6.0 allows remote authenticated users to gain privileges via unknown vectors.
- CVE-2010-1037Apr 28, 2010risk 0.00cvss —epss 0.02
Cross-site request forgery (CSRF) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
- CVE-2010-1036Apr 28, 2010risk 0.00cvss —epss 0.03
Cross-site scripting (XSS) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- CVE-2010-1035Apr 23, 2010risk 0.00cvss —epss 0.05
Multiple unspecified vulnerabilities in HP Virtual Machine Manager (VMM) before 6.0 allow remote authenticated users to execute arbitrary code via unknown vectors.
- CVE-2010-1034Apr 23, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability in HP System Management Homepage (SMH) 6.0 before 6.0.0-95 on Linux, and 6.0 before 6.0.0.96 on Windows, allows remote authenticated users to obtain sensitive information, modify data, and cause a denial of service via unknown vectors.
- CVE-2010-1032Apr 21, 2010risk 0.00cvss —epss 0.01
Unspecified vulnerability in HP HP-UX B.11.11 allows local users to cause a denial of service via unknown vectors.
- CVE-2010-1031Apr 1, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in HP Insight Control for Linux (aka IC-Linux or ICE-LX) 2.11 and earlier allows local users to gain privileges via unknown vectors.
- CVE-2010-1030Mar 31, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in HP-UX B.11.31, with AudFilter rules enabled, allows local users to cause a denial of service via unknown vectors.
Page 37 of 46