cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-5739,https://securityvulnerability.io/vulnerability/CVE-2023-5739,Elevation of Privilege Vulnerability in HP PC Hardware Diagnostics,"Certain versions of HP PC Hardware Diagnostics for Windows possess a vulnerability that could enable an attacker to gain elevated privileges. This issue may allow unauthorized access to sensitive system resources or administrative functionalities, potentially compromising the integrity and security of the affected systems.",HP,HP Pc Hardware Diagnostics Windows,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-10-31T16:15:00.000Z,0
CVE-2023-32674,https://securityvulnerability.io/vulnerability/CVE-2023-32674,Buffer Overflow Vulnerability in HP PC Hardware Diagnostics Software,"Certain versions of HP PC Hardware Diagnostics for Windows are susceptible to a buffer overflow vulnerability. This flaw may allow an attacker to exploit the system by sending specially crafted inputs, leading to unauthorized access or code execution. Users of affected versions are advised to ensure that their software is up-to-date to mitigate potential risks.",HP,HP PC Hardware Diagnostics Windows,9.8,CRITICAL,0.0022700000554323196,false,,false,false,false,,,false,false,,2023-06-12T22:15:00.000Z,0
CVE-2023-32673,https://securityvulnerability.io/vulnerability/CVE-2023-32673,Elevation of Privilege in HP PC Hardware Diagnostics and Related Products,"Certain versions of HP PC Hardware Diagnostics for Windows, HP Image Assistant, and HP Thunderbolt Dock G2 Firmware are susceptible to a vulnerability that allows elevation of privilege. This issue could enable an attacker to gain elevated permissions on vulnerable systems, potentially compromising the integrity and confidentiality of sensitive data. It is crucial for users of these products to remain vigilant and apply necessary updates to mitigate potential risks. For more information, refer to the official HP support documentation.",HP,"HP PC Hardware Diagnostics Windows, HP Image Assistant, and HP Thunderbolt Dock G2 Firmware",9.8,CRITICAL,0.002630000002682209,false,,false,false,false,,,false,false,,2023-06-12T22:15:00.000Z,0
CVE-2016-8522,https://securityvulnerability.io/vulnerability/CVE-2016-8522,,"A cross-site scripting vulnerability in HPE Diagnostics version 9.24 IP1, 9.26 , 9.26IP1 was found.",HP,Diagnostics,5.4,MEDIUM,0.0010100000072270632,false,,false,false,false,,,false,false,,2018-02-15T22:29:00.000Z,0
CVE-2016-8521,https://securityvulnerability.io/vulnerability/CVE-2016-8521,,"A Remote click jacking vulnerability in HPE Diagnostics version 9.24 IP1, 9.26 , 9.26IP1 was found.",HP,Diagnostics,6.5,MEDIUM,0.0034099998883903027,false,,false,false,false,,,false,false,,2018-02-15T22:29:00.000Z,0
CVE-2013-6216,https://securityvulnerability.io/vulnerability/CVE-2013-6216,,"Unspecified vulnerability in HP Array Configuration Utility, Array Diagnostics Utility, ProLiant Array Diagnostics, and SmartSSD Wear Gauge Utility 9.40 and earlier allows local users to gain privileges via unknown vectors.",HP,"Smartssd Wear Gauge Utility,Array Configuration Utility,Array Diagnostics Utility,Proliant Array Diagnostics",,,0.0004199999966658652,false,,false,false,false,,,false,false,,2014-04-12T01:00:00.000Z,0
CVE-2013-3575,https://securityvulnerability.io/vulnerability/CVE-2013-3575,,"hpdiags/frontend2/help/pageview.php in HP Insight Diagnostics 9.4.0.4710 does not properly restrict PHP include or require statements, which allows remote attackers to include arbitrary hpdiags/frontend2/help/ .html files via the path parameter.",HP,Insight Diagnostics,,,0.003379999892786145,false,,false,false,false,,,false,false,,2013-06-14T13:07:00.000Z,0
CVE-2013-3574,https://securityvulnerability.io/vulnerability/CVE-2013-3574,,Absolute path traversal vulnerability in hpdiags/frontend2/commands/saveCompareConfig.php in HP Insight Diagnostics 9.4.0.4710 allows remote attackers to write data to arbitrary files via a full pathname in the argument to the devicePath (aka mount) parameter.,HP,Insight Diagnostics,,,0.003379999892786145,false,,false,false,false,,,false,false,,2013-06-14T13:07:00.000Z,0
CVE-2013-3573,https://securityvulnerability.io/vulnerability/CVE-2013-3573,,HP Insight Diagnostics 9.4.0.4710 allows remote attackers to conduct unspecified injection attacks via unknown vectors.,HP,Insight Diagnostics,,,0.00267999991774559,false,,false,false,false,,,false,false,,2013-06-14T13:07:00.000Z,0
CVE-2012-3278,https://securityvulnerability.io/vulnerability/CVE-2012-3278,,Stack-based buffer overflow in magentservice.exe in HP Diagnostics Server 8.x through 8.07 and 9.x through 9.21 allows remote attackers to execute arbitrary code via a malformed message packet.,HP,Diagnostics Server,,,0.039969999343156815,false,,false,false,false,,,false,false,,2013-01-25T18:55:00.000Z,0
CVE-2011-4789,https://securityvulnerability.io/vulnerability/CVE-2011-4789,,"Stack-based buffer overflow in magentservice.exe in the server in HP LoadRunner 11.00 before patch 4 allows remote attackers to execute arbitrary code via a crafted size value in a packet.  NOTE: it was originally reported that the affected product is HP Diagnostics Server, but HP states that ""the vulnerable product is actually HP LoadRunner.""",HP,Diagnostics,,,0.9477199912071228,false,,false,false,false,,,false,false,,2012-01-13T02:00:00.000Z,0
CVE-2011-0892,https://securityvulnerability.io/vulnerability/CVE-2011-0892,,Cross-site scripting (XSS) vulnerability in HP Diagnostics 7.5x and 8.0x before 8.05.54.225 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.,HP,Diagnostics,,,0.020919999107718468,false,,false,false,false,,,false,false,,2011-03-29T18:00:00.000Z,0
CVE-2010-4111,https://securityvulnerability.io/vulnerability/CVE-2010-4111,,Cross-site scripting (XSS) vulnerability in HP Insight Diagnostics Online Edition before 8.5.1.3712 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.,HP,Insight Diagnostics,,,0.003700000001117587,false,,false,false,false,,,false,false,,2010-12-22T20:00:00.000Z,0
CVE-2010-3003,https://securityvulnerability.io/vulnerability/CVE-2010-3003,,Cross-site scripting (XSS) vulnerability in HP Insight Diagnostics Online Edition before 8.5.0-11 on Linux allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.,HP,Insight Diagnostics,,,0.00443999981507659,false,,false,false,false,,,false,false,,2010-09-10T18:00:00.000Z,0
CVE-2008-3542,https://securityvulnerability.io/vulnerability/CVE-2008-3542,,Unspecified vulnerability in HP Insight Diagnostics before 7.9.1.2402 allows remote attackers to read arbitrary files via unknown vectors.,HP,Insight Diagnostics,,,0.006570000201463699,false,,false,false,false,,,false,false,,2008-10-02T18:00:00.000Z,0
CVE-2003-1495,https://securityvulnerability.io/vulnerability/CVE-2003-1495,,Unspecified vulnerability in the non-SSL web agent in various HP Management Agent products allows local users or remote attackers to gain privileges or cause a denial of service via unknown attack vectors.,HP,"Insight Manager,Insight Management Suite,Remote Diagnostics Enabling Agent",,,0.00471000000834465,false,,false,false,false,,,false,false,,2003-12-31T05:00:00.000Z,0