VYPR

Vendor CVEs

Microfocus

All CVEs

2,278 total · sorted by risk
  • CVE-2010-3988Oct 28, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to bypass intended access restrictions and cause a denial of service via unknown vectors.

  • CVE-2010-3987Oct 28, 2010
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2010-3985Oct 26, 2010
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9.0, when Internet Explorer 6.0 is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2010-3986Oct 26, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP Virtual Connect Enterprise Manager (VCEM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors.

  • CVE-2010-3290Oct 23, 2010
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote authenticated users to gain privileges via unknown vectors.

  • CVE-2010-3289Oct 23, 2010
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2010-3288Oct 23, 2010
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

  • CVE-2010-3291Oct 21, 2010
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in HP AssetCenter 5.0x through AC_5.03, and AssetManager 5.1x through AM_5.12 and 5.2x through AM_5.22, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2010-3287Oct 18, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability on HP ProCurve Access Points, Access Controllers, and Mobility Controllers with software 5.1.x through 5.1.9, 5.2.x through 5.2.7, 5.3.x through 5.3.5, and 5.4.x through 5.4.0 allows remote attackers to execute arbitrary code via unknown vectors.

  • CVE-2010-3286Oct 18, 2010
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in HP Systems Insight Manager (SIM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors.

  • CVE-2010-3285Sep 24, 2010
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to cause a denial of service via unknown vectors.

  • CVE-2010-3284Sep 24, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to obtain sensitive information via unknown vectors.

  • CVE-2010-3283Sep 24, 2010
    risk 0.00cvss epss 0.01

    Open redirect vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

  • CVE-2010-3012Sep 17, 2010
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this issue was originally assigned CVE-2010-3010 due to a CNA error.

  • CVE-2010-3011Sep 17, 2010
    risk 0.00cvss epss 0.04

    CRLF injection vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

  • CVE-2010-3010Sep 15, 2010
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability on the HP 3Com OfficeConnect Gigabit VPN Firewall 3CREVF100-73 with firmware before 1.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: a separate XSS issue for HP System Management…

  • CVE-2010-3009Sep 15, 2010
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in HP System Management Homepage (SMH) for Linux 6.0 and 6.1 allows remote authenticated users to obtain sensitive information and gain root privileges via unknown vectors.

  • CVE-2010-3008Sep 13, 2010
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in HP Data Protector Express, and Data Protector Express Single Server Edition (SSE), 3.x before build 56936 and 4.x before build 56906 on Windows allows local users to gain privileges or cause a denial of service via unknown vectors, a different…

  • CVE-2010-3006Sep 10, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability on the HP ProLiant G6 Lights-Out 100 Remote Management card with firmware before 4.06 allows remote attackers to cause a denial of service via unknown vectors.

  • CVE-2010-3005Sep 8, 2010
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in HP Operations Agent 7.36 and 8.6 on Windows allows local users to gain privileges via unknown vectors.

  • CVE-2010-3004Sep 8, 2010
    risk 0.00cvss epss 0.05

    Unspecified vulnerability in HP Operations Agent 7.36 and 8.6 on Windows allows remote attackers to execute arbitrary code via unknown vectors.

  • CVE-2010-2712Aug 30, 2010
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in Software Distributor (sd) in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors.

  • CVE-2010-2711Aug 25, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in the HP MagCloud app before 1.0.5 for the iPad allows remote attackers to read and modify MagCloud application data via unknown vectors.

  • CVE-2010-2708Aug 9, 2010
    risk 0.00cvss epss 0.01

    Unspecified vulnerability on the HP ProCurve 2610 switch before R.11.22, when DHCP is enabled, allows remote attackers to cause a denial of service via unknown vectors.

  • CVE-2010-2707Aug 9, 2010
    risk 0.00cvss epss 0.01

    Unspecified vulnerability on the HP ProCurve 2626 and 2650 switches before H.10.80 allows remote attackers to obtain sensitive information, modify data, and cause a denial of service via unknown vectors.

  • CVE-2010-2706Aug 9, 2010
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in the In-band Agent on the HP ProCurve 2610 switch before R.11.30 allows remote attackers to cause a denial of service via unknown vectors.

  • CVE-2010-2705Aug 9, 2010
    risk 0.00cvss epss 0.01

    Unspecified vulnerability on the HP ProCurve 1800-24G switch with software PB.03.02 and earlier, and the ProCurve 1800-8G switch with software PA.03.02 and earlier, when SNMP is enabled, allows remote attackers to obtain sensitive information via unknown vectors.

  • CVE-2010-1973Jul 22, 2010
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users to gain privileges or obtain sensitive information via unknown vectors.

  • CVE-2010-1972Jul 22, 2010
    risk 0.00cvss epss 0.03

    The default configuration of HP Client Automation (HPCA) Enterprise Infrastructure (aka Radia) allows remote attackers to read log files, and consequently cause a denial of service or have unspecified other impact, via web requests.

  • CVE-2010-1969Jul 22, 2010
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in HP Virtual Connect Enterprise Manager for Windows before 6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

  • CVE-2010-1971Jul 15, 2010
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, a different vulnerability than CVE-2010-1968.

  • CVE-2010-1970Jul 15, 2010
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data, and consequently gain privileges, via unknown vectors.

  • CVE-2010-1968Jul 15, 2010
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, a different vulnerability than CVE-2010-1971.

  • CVE-2010-1967Jul 15, 2010
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data via unknown vectors.

  • CVE-2010-1966Jul 15, 2010
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in HP Insight Control power management for Windows before 6.1 allows local users to read or modify data, or cause a denial of service, via unknown vectors.

  • CVE-2010-1965Jul 15, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP Insight Orchestration for Windows before 6.1 allows remote attackers to read or modify data via unknown vectors.

  • CVE-2010-2612Jul 2, 2010
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the HP OpenVMS Auditing feature in OpenVMS ALPHA 7.3-2, 8.2, and 8.3; and OpenVMS for Integrity Servers 8.3 AND 8.3-1H1; allows local users to obtain sensitive information via unknown vectors.

  • CVE-2010-1963Jun 7, 2010
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in HP ServiceCenter allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2010-1959May 27, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP TestDirector for Quality Center 9.2 before Patch8 allows remote attackers to modify data via unknown vectors.

  • CVE-2010-1557May 14, 2010
    risk 0.00cvss epss 0.01

    Multiple cross-site scripting (XSS) vulnerabilities in HP Insight Control Server Migration before 6.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2010-1556May 14, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP Systems Insight Manager (SIM) 5.3, 5.3 Update 1, and 6.0 allows remote attackers to obtain sensitive information and modify data via unknown vectors.

  • CVE-2010-1558May 14, 2010
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in HP Multifunction Peripheral (MFP) Digital Sending Software before 4.18.3 allows local users to bypass intended restrictions on the MFP "Send to e-mail" feature, and obtain sensitive information, via unknown vectors.

  • CVE-2010-1038Apr 28, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP System Insight Manager before 6.0 allows remote authenticated users to gain privileges via unknown vectors.

  • CVE-2010-1037Apr 28, 2010
    risk 0.00cvss epss 0.02

    Cross-site request forgery (CSRF) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

  • CVE-2010-1036Apr 28, 2010
    risk 0.00cvss epss 0.03

    Cross-site scripting (XSS) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2010-1035Apr 23, 2010
    risk 0.00cvss epss 0.05

    Multiple unspecified vulnerabilities in HP Virtual Machine Manager (VMM) before 6.0 allow remote authenticated users to execute arbitrary code via unknown vectors.

  • CVE-2010-1034Apr 23, 2010
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP System Management Homepage (SMH) 6.0 before 6.0.0-95 on Linux, and 6.0 before 6.0.0.96 on Windows, allows remote authenticated users to obtain sensitive information, modify data, and cause a denial of service via unknown vectors.

  • CVE-2010-1032Apr 21, 2010
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in HP HP-UX B.11.11 allows local users to cause a denial of service via unknown vectors.

  • CVE-2010-1031Apr 1, 2010
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in HP Insight Control for Linux (aka IC-Linux or ICE-LX) 2.11 and earlier allows local users to gain privileges via unknown vectors.

  • CVE-2010-1030Mar 31, 2010
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in HP-UX B.11.31, with AudFilter rules enabled, allows local users to cause a denial of service via unknown vectors.

Page 37 of 46