Known Vulnerabilities for products from Hpe
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Hpe".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Hpe can be found at device.report : Hpe
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-23818 json | A vulnerability has been identified in the graphical user interface (GUI) of HPE Aruba Networking Private 5G Core On-Prem tha... | Not Provided | 2026-04-07 | 2026-04-14 |
| CVE-2023-39268 json | A memory corruption vulnerability in ArubaOS-Switch could lead to unauthenticated remote code execution by receiving speciall... | 9.8 - CRITICAL | 2023-08-29 | 2023-09-11 |
| CVE-2023-39267 json | An authenticated remote code execution vulnerability exists in the command line interface in ArubaOS-Switch. Successful explo... | 6.5 - MEDIUM | 2023-08-29 | 2023-09-11 |
| CVE-2023-39266 json | A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a st... | 6.1 - MEDIUM | 2023-08-29 | 2023-09-11 |
| CVE-2023-30912 json | A remote code execution issue exists in HPE OneView. | 9.8 - CRITICAL | 2023-10-25 | 2023-10-31 |
| CVE-2023-30911 json | HPE Integrated Lights-Out 5, and Integrated Lights-Out 6 using iLOrest may cause denial of service. | 7.5 - HIGH | 2023-10-18 | 2023-10-25 |
| CVE-2023-30910 json | HPE MSA Controller prior to version IN210R004 could be remotely exploited to allow inconsistent interpretation of HTTP reque... | 5.4 - MEDIUM | 2023-10-09 | 2023-10-13 |
| CVE-2023-30906 json | The vulnerability could be locally exploited to allow escalation of privilege. | 7.8 - HIGH | 2023-07-18 | 2023-07-27 |
| CVE-2023-30905 json | The MC990 X and UV300 RMC component has and inadequate default configuration that could be exploited to obtain enhanced privi... | 7.8 - HIGH | 2023-06-16 | 2023-06-29 |
| CVE-2023-30904 json | A security vulnerability in HPE Insight Remote Support may result in the local disclosure of privileged LDAP information. | 5.5 - MEDIUM | 2023-06-16 | 2023-06-29 |
| CVE-2023-28085 json | An HPE OneView Global Dashboard (OVGD) appliance dump may expose OVGD user account credentials | 5.5 - MEDIUM | 2023-04-14 | 2023-04-21 |
| CVE-2023-28084 json | HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens | 5.5 - MEDIUM | 2023-04-25 | 2023-05-04 |
| CVE-2023-28083 json | A remote Cross-site Scripting vulnerability was discovered in HPE Integrated Lights-Out 6 (iLO 6), Integrated Lights-Out 5 (i... | 5.4 - MEDIUM | 2023-03-22 | 2023-03-24 |
| CVE-2023-3718 json | An authenticated command injection vulnerability exists in the AOS-CX command line interface. Successful exploitation of thi... | 8.8 - HIGH | 2023-08-01 | 2023-08-08 |
| CVE-2023-1168 json | An authenticated remote code execution vulnerability exists in the AOS-CX Network Analytics Engine. Successful exploitation o... | 8.8 - HIGH | 2023-03-22 | 2023-11-07 |
| CVE-2022-37940 json | Potential security vulnerabilities have been identified in the HPE FlexFabric 5700 Switch Series. These vulnerabilities could... | 6.1 - MEDIUM | 2023-03-22 | 2023-11-07 |
| CVE-2022-37939 json | A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers. The vulnerabilit... | 5.5 - MEDIUM | 2023-03-10 | 2023-11-07 |
| CVE-2022-37938 json | Unauthenticated server side request forgery in HPE Serviceguard Manager | 9.8 - CRITICAL | 2023-03-01 | 2023-03-10 |
| CVE-2022-37937 json | Pre-auth memory corruption in HPE Serviceguard | 9.8 - CRITICAL | 2023-03-01 | 2023-08-08 |
| CVE-2022-37936 json | Unauthenticated Java deserialization vulnerability in Serviceguard Manager | 9.8 - CRITICAL | 2023-03-01 | 2023-11-07 |
Known software with vulnerabilities from Hpe
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Hpe | 3500 | - |
| Operating System | Hpe | 3500 Firmware | k.16.02.0032 |
| Hardware | Hpe | 3500 Yl | - |
| Operating System | Hpe | 3500 Yl Firmware | k.16.02.0032 |
| Hardware | Hpe | 6200 Yl | - |
| Operating System | Hpe | 6200 Yl Firmware | k.15.18.0024 |
| Hardware | Hpe | 8200 Zl | - |
| Operating System | Hpe | 8200 Zl Firmware | k.15.18.0024 |
| Hardware | Hpe | Apollo 2000 Gen10 Plus System | - |
| Hardware | Hpe | Apollo 4200 Gen10 Server | - |
| Operating System | Hpe | Apollo 4200 Gen10 Server Firmware | - |
| Hardware | Hpe | Apollo 4200 Gen9 Server | - |
| Operating System | Hpe | Apollo 4200 Gen9 Server Firmware | - |
| Hardware | Hpe | Apollo 4510 Gen10 System | - |
| Hardware | Hpe | Apollo 4520 Chassis | - |
| Hardware | Hpe | Apollo 6500 Gen10 System | - |
| Application | Hpe | Aruba Airwave | 6.3.1 |
| Hardware | Hpe | Cloudline Cl2100 Gen10 Server | - |
| Hardware | Hpe | Cloudline Cl2200 Gen10 Server | - |
| Hardware | Hpe | Cloudline Cl2600 Gen10 Server | - |