CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-30903
https://notcve.org/view.php?id=CVE-2023-30903
16 Jun 2023 — HP-UX could be exploited locally to create a Denial of Service (DoS) when any physical interface is configured with IPv6/inet6. • https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbux04474en_us • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.8EPSS: 90%CPEs: 49EXPL: 4CVE-2016-2776 – BIND TSIG Query Denial of Service
https://notcve.org/view.php?id=CVE-2016-2776
28 Sep 2016 — buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query. buffer.c en named en ISC BIND 9 en versiones anteriores a 9.9.9-P3, 9.10.x en versiones anteriores a 9.10.4-P3 y 9.11.x en versiones anteriores a 9.11.0rc3 no construye respuestas adecuadamente, lo que permite a atacantes remotos provocar una denegación d... • https://packetstorm.news/files/id/180551 • CWE-20: Improper Input Validation CWE-617: Reachable Assertion •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2016-2016 – HPE Security Bulletin HPSBUX03577 SSRT102172 1
https://notcve.org/view.php?id=CVE-2016-2016
10 May 2016 — Base-VxFS-50 B.05.00.01 through B.05.00.02, Base-VxFS-501 B.05.01.0 through B.05.01.03, and Base-VxFS-51 B.05.10.00 through B.05.10.02 on HPE HP-UX 11iv3 with VxFS 5.0, VxFS 5.0.1, and VxFS 5.1SP1 mishandles ACL inheritance for default:class: entries, default:other: entries, and default:user: entries, which allows local users to bypass intended access restrictions by leveraging the configuration of a parent directory. Base-VxFS-50 B.05.00.01 hasta la versión B.05.00.02, Base-VxFS-501 B.05.01.0 hasta la vers... • http://www.securitytracker.com/id/1035816 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2015-2126 – HP Security Bulletin HPSBUX03359 1
https://notcve.org/view.php?id=CVE-2015-2126
29 Jun 2015 — Unspecified vulnerability in pppoec in HP HP-UX 11iv2 and 11iv3 allows local users to gain privileges by leveraging setuid permissions. Vulnerabilidad no especificada en pppoec en HP HP-UX 11iv2 y 11iv3 permite a usuarios locales ganar privilegios mediante el aprovechamiento de permisos setuid. A potential security vulnerability has been identified with the HP-UX pppoec utility. The vulnerability could be exploited in allowing a local user to elevate their privilege. Revision 1 of this advisory. • http://www.securityfocus.com/bid/75462 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.8EPSS: 9%CPEs: 240EXPL: 0CVE-2014-7810 – Tomcat/JbossWeb: security manager bypass via EL expressions
https://notcve.org/view.php?id=CVE-2014-7810
14 May 2015 — The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemented by an inaccessible class, which allows attackers to bypass a SecurityManager protection mechanism via a web application that leverages use of incorrect privileges during EL evaluation. La implementación Expression Language (EL) en Apache Tomcat 6.x anterior a 6.0.44, 7.x anterior a 7.0.58, y 8.x anterior a 8... • http://marc.info/?l=bugtraq&m=145974991225029&w=2 • CWE-284: Improper Access Control •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2012-0125 – HP Security Bulletin HPSBUX02755 SSRT100667
https://notcve.org/view.php?id=CVE-2012-0125
28 Mar 2012 — Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.31 allows local users to obtain access to diagnostic information via unknown vectors, a related issue to CVE-2012-0126. Vulnerabilidad no especificada en la implementación de WBEM en HP HP-UX v11.31 permite a los usuarios locales obtener acceso a la información de diagnóstico a través de vectores desconocidos, una cuestión relacionada con CVE-2012-0126. A potential security vulnerability has been identified with certain HP-UX WBEM component... • http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03221589 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2012-0126 – HP Security Bulletin HPSBUX02755 SSRT100667
https://notcve.org/view.php?id=CVE-2012-0126
28 Mar 2012 — Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.11 and 11.23 allows remote attackers to obtain access to diagnostic information via unknown vectors, a related issue to CVE-2012-0125. Vulnerabilidad no especificada en la implementación de WBEM en HP HP-UX v11.11 y v11.23, permite a atacantes remotos obtener acceso a la información de diagnóstico a través de vectores desconocidos, una cuestión relacionada con CVE-2012-0125. A potential security vulnerability has been identified with certai... • http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03221589 •
CVSS: 9.1EPSS: 1%CPEs: 2EXPL: 0CVE-2010-0451 – HP Security Bulletin HPSBUX02509 SSRT100032
https://notcve.org/view.php?id=CVE-2010-0451
28 Mar 2010 — The installation process for NFS/ONCplus B.11.31_08 and earlier on HP HP-UX B.11.31 changes the NFS_SERVER setting in the nfsconf file, which might allow remote attackers to obtain filesystem access via NFS requests. El proceso de instalación de NFS/ONCplus B.11.31_08 y versiones anteriores en HP HP-UX B.11.31 modifica la variable NFS_SERVER en el fichero nfsconf , lo que puede permitir a atacantes remotos la obtención de acceso al sistema de ficheros a través de peticiones NFS. A potential security vulnera... • http://marc.info/?l=bugtraq&m=126962272413767&w=2 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2009-4184 – HP Security Bulletin HPSBUX02464 SSRT090210
https://notcve.org/view.php?id=CVE-2009-4184
02 Feb 2010 — Unspecified vulnerability in HP Enterprise Cluster Master Toolkit (ECMT) B.05.00 on HP-UX B.11.23 (11i v2) and HP-UX B.11.31 (11i v3) allows local users to gain access to an Oracle or Sybase database via unknown vectors. Vulnerabilidad inespecífica en HP Enterprise Cluster Master Toolkit (ECMT) B.05.00 en HP-UX B.11.23 (11i v2) y HP-UX B.11.31 (11i v3) permite a usuarios locales conseguir el acceso a las bases de datos Oracle o Sybase a través de vectores desconocidos. A potential security vulnerability has... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01894850 •
CVSS: 7.8EPSS: 0%CPEs: 70EXPL: 0CVE-2008-4413 – HP Security Bulletin 2008-01.21
https://notcve.org/view.php?id=CVE-2008-4413
04 Nov 2008 — Unspecified vulnerability in HP System Management Homepage (SMH) 2.2.6 and earlier on HP-UX B.11.11 and B.11.23, and SMH 2.2.6 and 2.2.8 and earlier on HP-UX B.11.23 and B.11.31, allows local users to gain "unauthorized access" via unknown vectors, possibly related to temporary file permissions. Vulnerabilidad no especificada en HP System Management Homepage (SMH) v2.2.6 y anteriores en HP-UX B.11.11 y B.11.23, y SMH 2.2.6 y 2.2.8 y anteriores en HP-UX B.11.23 y B.11.31; permite a usuarios locales obtener "... • http://marc.info/?l=bugtraq&m=122581539223159&w=2 • CWE-264: Permissions, Privileges, and Access Controls •