cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-53676,https://securityvulnerability.io/vulnerability/CVE-2024-53676,Remote Code Execution Vulnerability Affects HPE Insight Remote Support,"A directory traversal vulnerability exists within Hewlett Packard Enterprise Insight Remote Support software that could be exploited by an attacker to gain unauthorized access to the system. This flaw allows an adversary to craft a malicious input, potentially leading to the execution of arbitrary code on the affected system. Proper configuration and ongoing security updates are crucial for mitigating the risks associated with this vulnerability.",HP,HP Insight Remote Support,9.8,CRITICAL,0.000910000002477318,false,false,false,false,,false,false,2024-11-27T01:15:00.000Z,0
CVE-2024-53674,https://securityvulnerability.io/vulnerability/CVE-2024-53674,HPE Insight Remote Support XML External Entity Injection Vulnerability,"An XML external entity injection (XXE) vulnerability exists in HPE Insight Remote Support, potentially allowing remote users to exploit this weakness and disclose sensitive information under specific circumstances. This flaw emphasizes the importance of secure XML parsing configurations and highlights the risks associated with improperly validated XML input. Organizations using HPE Insight Remote Support should assess their environment for potential exposure and apply relevant security patches or mitigations as necessary.",HP,HP Insight Remote Support,7.5,HIGH,0.0008699999889358878,false,false,false,false,,false,false,2024-11-26T22:15:00.000Z,0
CVE-2024-53675,https://securityvulnerability.io/vulnerability/CVE-2024-53675,HPE Insight Remote Support XML External Entity Injection Vulnerability,"An XML external entity injection (XXE) vulnerability exists in HPE Insight Remote Support, which may allow remote attackers to exploit this weakness to disclose sensitive information under certain conditions. Implementing adequate input validation and configuring secure settings can mitigate risks associated with this vulnerability.",HP,HP Insight Remote Support,7.5,HIGH,0.0008699999889358878,false,false,false,false,,false,false,2024-11-26T22:15:00.000Z,0
CVE-2024-11622,https://securityvulnerability.io/vulnerability/CVE-2024-11622,HPE Insight Remote Support Exposes XML External Entity Injection Vulnerability,"An XML external entity injection (XXE) vulnerability exists within the HPE Insight Remote Support software, which can be exploited by remote users to gain unauthorized access to sensitive information. This vulnerability arises when the application processes XML inputs without adequate validation, potentially allowing attackers to craft malicious XML data. By exploiting this weakness, attackers may target system configurations or sensitive data stored within the server, leading to potential information disclosure. Security best practices recommend immediate evaluation and patching of the affected software versions to mitigate risks associated with this vulnerability.",HP,HP Insight Remote Support,7.5,HIGH,0.0008699999889358878,false,false,false,false,,false,false,2024-11-26T21:31:11.004Z,0
CVE-2023-30904,https://securityvulnerability.io/vulnerability/CVE-2023-30904,,A security vulnerability in HPE Insight Remote Support may result in the local disclosure of privileged LDAP information.,HP,HP Insight Remote Support,5.5,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2023-06-16T21:15:00.000Z,0