Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Oneview
(Hp)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 22 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-01-23 | CVE-2023-6573 | HPE OneView may have a missing passphrase during restore. | Oneview | 5.5 | ||
| 2024-01-23 | CVE-2023-50274 | HPE OneView may allow command injection with local privilege escalation. | Oneview | 7.8 | ||
| 2024-01-23 | CVE-2023-50275 | HPE OneView may allow clusterService Authentication Bypass resulting in denial of service. | Oneview | 7.5 | ||
| 2023-09-14 | CVE-2023-30909 | A remote authentication bypass issue exists in some OneView APIs. | Oneview | 9.8 | ||
| 2023-09-07 | CVE-2023-30908 | A remote authentication bypass issue exists in a OneView API. | Oneview | 9.8 | ||
| 2022-04-04 | CVE-2022-23699 | A local authentication restriction bypass vulnerability was discovered in HPE OneView version(s): Prior to 6.6. HPE has provided a software update to resolve this vulnerability in HPE OneView. | Oneview | 7.8 | ||
| 2022-04-04 | CVE-2022-23700 | A local unauthorized read access to files vulnerability was discovered in HPE OneView version(s): Prior to 6.6. HPE has provided a software update to resolve this vulnerability in HPE OneView. | Oneview | 5.5 | ||
| 2022-05-17 | CVE-2022-28617 | A remote bypass security restrictions vulnerability was discovered in HPE OneView version(s): Prior to 7.0. HPE has provided a software update to resolve this vulnerability in HPE OneView. | Oneview | 9.8 | ||
| 2023-04-25 | CVE-2023-28084 | HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens | Oneview, Oneview_global_dashboard | 5.5 | ||
| 2023-04-25 | CVE-2023-28086 | An HPE OneView appliance dump may expose proxy credential settings | Oneview | 5.5 |