Latest CVE Feed
-
6.1
MEDIUMCVE-2021-29216
A remote cross-site scripting vulnerability was discovered in HPE OneView Global Dashboard version(s): Prior to 2.5. HPE has provided a software update to resolve this vulnerability in HPE OneView Global Dashboard.... Read more
Affected Products : oneview_global_dashboard- EPSS Score: %0.53
- Published: Feb. 24, 2022
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-29215
A potential security vulnerability in HPE Ezmeral Data Fabric that may allow a remote access restriction bypass in the TEZ MapR ecosystem component was discovered in version(s): Prior to Tez-0.8: mapr-tez-0.8.201907081100-1.noarch; prior to Tez-0.9: mapr-... Read more
- EPSS Score: %0.50
- Published: Jan. 18, 2022
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2021-29214
A security vulnerability has been identified in HPE StoreServ Management Console (SSMC). An authenticated SSMC administrator could exploit the vulnerability to inject code and elevate their privilege in SSMC. The scope of this vulnerability is limited to ... Read more
Affected Products : storeserv_management_console- EPSS Score: %0.38
- Published: Dec. 10, 2021
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2021-29213
A potential local bypass of security restrictions vulnerability has been identified in HPE ProLiant DL20 Gen10, HPE ProLiant ML30 Gen10, and HPE ProLiant MicroServer Gen10 Plus server's system ROMs prior to version 2.52. The vulnerability could be locally... Read more
- EPSS Score: %0.04
- Published: Nov. 01, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-29212
A remote unauthenticated directory traversal security vulnerability has been identified in HPE iLO Amplifier Pack versions 1.80, 1.81, 1.90 and 1.95. The vulnerability could be remotely exploited to allow an unauthenticated user to run arbitrary code lead... Read more
Affected Products : ilo_amplifier_pack- EPSS Score: %15.48
- Published: Nov. 01, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-29211
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity... Read more
Affected Products : integrated_lights-out_4 integrated_lights-out_5 proliant_dl120_gen10_server proliant_dl160_gen10_server proliant_dl180_gen10_server proliant_dl360_gen10_server proliant_dl380_gen10_server proliant_dl385_gen10_server proliant_dl560_gen10_server proliant_dl580_gen10_server +19 more products- EPSS Score: %0.11
- Published: May. 25, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-29210
A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen... Read more
Affected Products : integrated_lights-out_4 integrated_lights-out_5 proliant_dl120_gen10_server proliant_dl160_gen10_server proliant_dl180_gen10_server proliant_dl360_gen10_server proliant_dl380_gen10_server proliant_dl385_gen10_server proliant_dl560_gen10_server proliant_dl580_gen10_server +19 more products- EPSS Score: %0.18
- Published: May. 25, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-29209
A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen... Read more
Affected Products : integrated_lights-out_4 integrated_lights-out_5 proliant_dl120_gen10_server proliant_dl160_gen10_server proliant_dl180_gen10_server proliant_dl360_gen10_server proliant_dl380_gen10_server proliant_dl385_gen10_server proliant_dl560_gen10_server proliant_dl580_gen10_server +19 more products- EPSS Score: %0.18
- Published: May. 25, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-29208
A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen... Read more
Affected Products : integrated_lights-out_4 integrated_lights-out_5 proliant_dl120_gen10_server proliant_dl160_gen10_server proliant_dl180_gen10_server proliant_dl360_gen10_server proliant_dl380_gen10_server proliant_dl385_gen10_server proliant_dl560_gen10_server proliant_dl580_gen10_server +19 more products- EPSS Score: %0.18
- Published: May. 25, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-29207
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity... Read more
Affected Products : integrated_lights-out_4 integrated_lights-out_5 proliant_dl120_gen10_server proliant_dl160_gen10_server proliant_dl180_gen10_server proliant_dl360_gen10_server proliant_dl380_gen10_server proliant_dl385_gen10_server proliant_dl560_gen10_server proliant_dl580_gen10_server +19 more products- EPSS Score: %0.11
- Published: May. 25, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-29206
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity... Read more
Affected Products : integrated_lights-out_4 integrated_lights-out_5 proliant_dl120_gen10_server proliant_dl160_gen10_server proliant_dl180_gen10_server proliant_dl360_gen10_server proliant_dl380_gen10_server proliant_dl385_gen10_server proliant_dl560_gen10_server proliant_dl580_gen10_server +19 more products- EPSS Score: %0.12
- Published: May. 25, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-29205
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity... Read more
Affected Products : integrated_lights-out_4 integrated_lights-out_5 proliant_dl120_gen10_server proliant_dl160_gen10_server proliant_dl180_gen10_server proliant_dl360_gen10_server proliant_dl380_gen10_server proliant_dl385_gen10_server proliant_dl560_gen10_server proliant_dl580_gen10_server +19 more products- EPSS Score: %0.11
- Published: May. 25, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-29204
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity... Read more
Affected Products : integrated_lights-out_4 integrated_lights-out_5 proliant_dl120_gen10_server proliant_dl160_gen10_server proliant_dl180_gen10_server proliant_dl360_gen10_server proliant_dl380_gen10_server proliant_dl385_gen10_server proliant_dl560_gen10_server proliant_dl580_gen10_server +19 more products- EPSS Score: %0.11
- Published: May. 25, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-29203
A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software, prior to version 1.22. The vulnerability could be remotely exploited to bypass remote authentication le... Read more
Affected Products : edgeline_infrastructure_manager- EPSS Score: %87.05
- Published: May. 06, 2021
- Modified: Nov. 21, 2024
-
6.7
MEDIUMCVE-2021-29202
A local buffer overflow vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE... Read more
Affected Products : integrated_lights-out_4 integrated_lights-out_5 proliant_dl120_gen10_server proliant_dl160_gen10_server proliant_dl180_gen10_server proliant_dl360_gen10_server proliant_dl380_gen10_server proliant_dl385_gen10_server proliant_dl560_gen10_server proliant_dl580_gen10_server +19 more products- EPSS Score: %0.07
- Published: May. 25, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-29201
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity... Read more
Affected Products : integrated_lights-out_4 integrated_lights-out_5 proliant_dl120_gen10_server proliant_dl160_gen10_server proliant_dl180_gen10_server proliant_dl360_gen10_server proliant_dl380_gen10_server proliant_dl385_gen10_server proliant_dl560_gen10_server proliant_dl580_gen10_server +19 more products- EPSS Score: %0.12
- Published: May. 25, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-29200
Apache OFBiz has unsafe deserialization prior to 17.12.07 version An unauthenticated user can perform an RCE attack... Read more
Affected Products : ofbiz- EPSS Score: %92.95
- Published: Apr. 27, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-29159
A cross-site scripting (XSS) vulnerability has been discovered in Nexus Repository Manager 3.x before 3.30.1. An attacker with a local account can create entities with crafted properties that, when viewed by an administrator, can execute arbitrary JavaScr... Read more
Affected Products : nexus_repository_manager- EPSS Score: %0.28
- Published: Apr. 28, 2021
- Modified: Nov. 21, 2024
-
4.9
MEDIUMCVE-2021-29158
Sonatype Nexus Repository Manager 3 Pro up to and including 3.30.0 has Incorrect Access Control.... Read more
Affected Products : nexus_repository_manager_3- EPSS Score: %0.22
- Published: Apr. 23, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-29157
Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with access to the local filesystem can trick OAuth2 authentication into using an HS256 validation key from an attacker-controlled location. This occurs during use of local JWT validation with t... Read more
- EPSS Score: %0.10
- Published: Jun. 28, 2021
- Modified: Nov. 21, 2024