CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2019-6335
https://notcve.org/view.php?id=CVE-2019-6335
A potential security vulnerability has been identified with Samsung Laser Printers. This vulnerability could potentially be exploited to create a denial of service. Se ha identificado una potencial vulnerabilidad de seguridad con las Impresoras Láser de Samsung. Esta vulnerabilidad podría ser explotada para crear una denegación de servicio. • https://support.hp.com/hr-en/document/c06461713 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2019-6333
https://notcve.org/view.php?id=CVE-2019-6333
A potential security vulnerability has been identified with certain versions of HP Touchpoint Analytics prior to version 4.1.4.2827. This vulnerability may allow a local attacker with administrative privileges to execute arbitrary code via an HP Touchpoint Analytics system service. Se identificó una potencial vulnerabilidad de seguridad con ciertas versiones de HP Touchpoint Analytics anterior a la versión 4.1.4.2827. Esta vulnerabilidad puede permitir a un atacante local con privilegios administrativos ejecutar código arbitrario por medio de un servicio de sistema de HP Touchpoint Analytics. • https://safebreach.com/Post/HP-Touchpoint-Analytics-DLL-Search-Order-Hijacking-Potential-Abuses-CVE-2019-6333 https://support.hp.com/us-en/document/c06463166 • CWE-427: Uncontrolled Search Path Element •
CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 0CVE-2019-11656
https://notcve.org/view.php?id=CVE-2019-11656
Stored XSS vulnerability in Micro Focus ArcSight Logger, affects versions prior to Logger 6.7.1 HotFix 6.7.1.8262.0. This vulnerability could allow Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'). Una vulnerabilidad de tipo XSS almacenado en Micro Focus ArcSight Logger afecta las versiones anteriores a Logger versión 6.7.1 HotFix versión 6.7.1.8262.0. Esta vulnerabilidad podría permitir la Neutralización Inapropiada de la Entrada Durante la Generación de Páginas Web ("Cross-site Scripting"). • https://community.microfocus.com/t5/ArcSight-Announcements/ArcSight-Logger-Fix-for-Security-Vulnerability/td-p/2699569 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-11655
https://notcve.org/view.php?id=CVE-2019-11655
Unrestricted file upload vulnerability in Micro Focus ArcSight Logger, version 6.7.0 and later. This vulnerability could allow Unrestricted Upload of File with Dangerous type. Vulnerabilidad de carga de archivos sin restricciones en Micro Focus ArcSight Logger, versión 6.7.0 y posteriores. Esta vulnerabilidad podría permitir la Carga Irrestricta de Archivos con tipo Peligroso. • https://community.microfocus.com/t5/ArcSight-Announcements/ArcSight-Logger-Fix-for-Security-Vulnerability/td-p/2699569 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-5408
https://notcve.org/view.php?id=CVE-2019-5408
Command View Advanced Edition (CVAE) products contain a vulnerability that could expose configuration information of hosts and storage systems that are managed by Device Manager server. This problem is due to a vulnerability in Device Manager GUI. The following products are affected. DevMgr version 7.0.0-00 to earlier than 8.6.1-02 RepMgr if it is installed on the same machine as DevMgr TSMgr if it is installed on the same machine as DevMgr. The resolution is to upgrade to the fixed version as described below or later version of DevMgr 8.6.2-02 or later. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03938en_us •