CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5404
https://notcve.org/view.php?id=CVE-2019-5404
A remote script injection vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. Se detectó una vulnerabilidad de inyección de script remoto en HPE 3PAR StoreServ Management y Core Software Media de HPE versión(es): anteriores a 3.5.0.1. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03946en_us • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5403
https://notcve.org/view.php?id=CVE-2019-5403
A remote multiple cross-site scripting vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. Se detectó una vulnerabilidad de tipo cross-site scripting múltiple remota en HPE 3PAR StoreServ Management y en Core Software Media versión(es): anteriores a 3.5.0.1. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03946en_us • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5402
https://notcve.org/view.php?id=CVE-2019-5402
A remote authorization bypass vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. Se detectó una vulnerabilidad de omisión de autorización remota en HPE 3PAR StoreServ Management y en Core Software Media versión(es): anteriores a 3.5.0.1. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03946en_us •