Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Oneview
(Hp)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 23 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-01-23 | CVE-2023-50275 | HPE OneView may allow clusterService Authentication Bypass resulting in denial of service. | Oneview | 7.5 | ||
| 2024-01-23 | CVE-2023-50274 | HPE OneView may allow command injection with local privilege escalation. | Oneview | 7.8 | ||
| 2024-10-18 | CVE-2024-42508 | This vulnerability could be exploited, leading to unauthorized disclosure of information to authenticated users. | Oneview | 5.5 | ||
| 2023-04-14 | CVE-2023-28091 | HPE OneView virtual appliance "Migrate server hardware" option may expose sensitive information in an HPE OneView support dump | Oneview | 5.5 | ||
| 2023-04-25 | CVE-2023-28086 | An HPE OneView appliance dump may expose proxy credential settings | Oneview | 5.5 | ||
| 2023-04-25 | CVE-2023-28087 | An HPE OneView appliance dump may expose OneView user accounts | Oneview | 5.5 | ||
| 2023-04-25 | CVE-2023-28088 | An HPE OneView appliance dump may expose SAN switch administrative credentials | Oneview | 7.8 | ||
| 2023-04-25 | CVE-2023-28089 | An HPE OneView appliance dump may expose FTP credentials for c7000 Interconnect Modules | Oneview | 7.1 | ||
| 2023-04-25 | CVE-2023-28090 | An HPE OneView appliance dump may expose SNMPv3 read credentials | Oneview | 5.5 | ||
| 2023-04-25 | CVE-2023-28084 | HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens | Oneview, Oneview_global_dashboard | 5.5 |