CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5407
https://notcve.org/view.php?id=CVE-2019-5407
A remote information disclosure vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. Se detectó una vulnerabilidad de divulgación de información remota en HPE 3PAR StoreServ Management y Core Software Media versión(es): anteriores a 3.5.0.1. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03946en_us •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5406
https://notcve.org/view.php?id=CVE-2019-5406
A remote session reuse vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. Se detectó una vulnerabilidad de reutilización de sesión remota en HPE 3PAR StoreServ Management y Core Software Media versión(es): anteriores a 3.5.0.1. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03946en_us • CWE-384: Session Fixation •
CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5405
https://notcve.org/view.php?id=CVE-2019-5405
A remote authorization bypass vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. Se detectó una vulnerabilidad de omisión de autorización remota en HPE 3PAR StoreServ Management y Core Software Media de HPE versión(es): anteriores a 3.5.0.1. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03946en_us •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5404
https://notcve.org/view.php?id=CVE-2019-5404
A remote script injection vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. Se detectó una vulnerabilidad de inyección de script remoto en HPE 3PAR StoreServ Management y Core Software Media de HPE versión(es): anteriores a 3.5.0.1. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03946en_us • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5403
https://notcve.org/view.php?id=CVE-2019-5403
A remote multiple cross-site scripting vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1. Se detectó una vulnerabilidad de tipo cross-site scripting múltiple remota en HPE 3PAR StoreServ Management y en Core Software Media versión(es): anteriores a 3.5.0.1. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03946en_us • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •