CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-2017-8948 – HPE Security Bulletin HPESBHF03745 2
https://notcve.org/view.php?id=CVE-2017-8948
11 Jul 2017 — A Remote Bypass Security Restriction vulnerability in HPE Network Node Manager i (NNMi) Software versions v10.0x, v10.1x, v10.2x was found. Se ha encontrado una vulnerabilidad de omisión de restricción de seguridad remota en HPE Network Node Manager i (NNMi) Software v10.0x, v10.1x y v10.2x. Potential security vulnerabilities have been identified in HPE Network Node Manager i. The vulnerabilities could be remotely exploited to allow bypass security restrictions, cross-site scripting (XSS), and/or URL redire... • http://www.securityfocus.com/bid/99342 •
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2016-4400 – HP Security Bulletin HPSBGN03656 1
https://notcve.org/view.php?id=CVE-2016-4400
08 Nov 2016 — A security vulnerability was identified in HP Network Node Manager i (NNMi) Software 10.00, 10.01 (patch1), 10.01 (patch 2), 10.10. The vulnerability could result in cross-site scripting (XSS). Se ha identificado una vulnerabilidad de seguridad en HP Network Node Manager i (NNMi) 10.00, 10.01 (patch1), 10.01 (patch 2) y 10.10. La vulnerabilidad podría resultar en Cross-Site Scripting (XSS). Several vulnerabilities are addressed in this security bulletin: * Potential security vulnerabilities were identified ... • http://www.securityfocus.com/bid/94195 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2016-4399 – HP Security Bulletin HPSBGN03656 1
https://notcve.org/view.php?id=CVE-2016-4399
08 Nov 2016 — A security vulnerability was identified in HP Network Node Manager i (NNMi) Software 10.00, 10.01 (patch1), 10.01 (patch 2), 10.10. The vulnerability could result in cross-site scripting (XSS). Se ha identificado una vulnerabilidad de seguridad en HP Network Node Manager i (NNMi) 10.00, 10.01 (patch1), 10.01 (patch 2) y 10.10. La vulnerabilidad podría resultar en Cross-Site Scripting (XSS). Several vulnerabilities are addressed in this security bulletin: * Potential security vulnerabilities were identified ... • http://www.securityfocus.com/bid/94195 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-4397 – HP Security Bulletin HPSBGN03657 1
https://notcve.org/view.php?id=CVE-2016-4397
08 Nov 2016 — A local code execution security vulnerability was identified in HP Network Node Manager i (NNMi) v10.00, v10.10 and v10.20 Software. Se ha identificado una vulnerabilidad de seguridad de ejecución de código local en HP Network Node Manager i (NNMi) v10.00, v10.10 y v10.20. A potential security vulnerability was identified in HPE Network Node Manager i (NNMi) Software. The vulnerability could result in local code execution. Revision 1 of this advisory. • http://www.securityfocus.com/bid/94154 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2016-4398 – HP Security Bulletin HPSBGN03656 1
https://notcve.org/view.php?id=CVE-2016-4398
08 Nov 2016 — A remote arbitrary code execution vulnerability was identified in HP Network Node Manager i (NNMi) Software 10.00, 10.01 (patch1), 10.01 (patch 2), 10.10 using Java Deserialization. Se ha identificado una vulnerabilidad de ejecución remota de código arbitrario en HP Network Node Manager i (NNMi) 10.00, 10.01 (patch1), 10.01 (patch 2) y 10.10 utilizando deserialización de Java. Several vulnerabilities are addressed in this security bulletin: * Potential security vulnerabilities were identified in HPE Network... • http://www.securityfocus.com/bid/94195 • CWE-502: Deserialization of Untrusted Data •