cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-37930,https://securityvulnerability.io/vulnerability/CVE-2022-37930,Local Information Disclosure in HPE Nimble Storage Arrays,A security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays and HPE Nimble Storage Secondary Flash Arrays that may allow local users to disclose sensitive information. Addressing this issue is crucial to maintain the integrity of data housed within these systems.,HP,HP Nimble Storage Hybrid Flash Arrays; Nimble Storage Secondary Flash Arrays,6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-12-12T13:15:00.000Z,0
CVE-2022-37928,https://securityvulnerability.io/vulnerability/CVE-2022-37928,Insufficient Verification of Data Authenticity in HPE Nimble Storage Products,"A vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays, stemming from insufficient verification of data authenticity. This flaw could allow attackers to manipulate data without proper validation, potentially leading to unauthorized access or data corruption. It is crucial for organizations using these systems to assess their environments and implement necessary safeguards to protect against potential exploitation.",HP,HP Nimble Storage Hybrid Flash Arrays; Nimble Storage Secondary Flash Arrays,8,HIGH,0.000539999979082495,false,,false,false,false,,,false,false,,2022-12-12T13:15:00.000Z,0
CVE-2022-37929,https://securityvulnerability.io/vulnerability/CVE-2022-37929,Improper Privilege Management in Hewlett Packard Enterprise Nimble Storage Arrays,"An improperly managed privilege issue was identified in Hewlett Packard Enterprise's Nimble Storage Hybrid Flash Arrays and Secondary Flash Arrays. This vulnerability can lead to unauthorized access and potential manipulation of sensitive configurations, emphasizing the need for immediate attention and remediation to ensure the security of affected systems.",HP,HP Nimble Storage Hybrid Flash Arrays; Nimble Storage Secondary Flash Arrays,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-12T13:15:00.000Z,0
CVE-2022-28618,https://securityvulnerability.io/vulnerability/CVE-2022-28618,Command Injection Vulnerability in HPE Nimble Storage Solutions,"A command injection vulnerability has been discovered in HPE Nimble Storage Hybrid Flash Arrays, All Flash Arrays, and Secondary Flash Arrays. This security weakness allows attackers to execute arbitrary commands on affected Nimble appliances, potentially compromising system integrity and data security. To address this issue, HPE has released software updates for the affected products, specifically versions 5.0.10.100 or later, 5.2.1.0 or later, and 6.0.0.100 or later. It is crucial for users to implement these updates promptly to ensure their systems remain secure.",HP,HP Nimble Storage Hybrid Flash Arrays; Nimble Storage All Flash Arrays; Nimble Storage Secondary Flash Arrays,9.8,CRITICAL,0.0033100000582635403,false,,false,false,false,,,false,false,,2022-05-20T20:50:19.000Z,0
CVE-2022-23705,https://securityvulnerability.io/vulnerability/CVE-2022-23705,Unauthorized Binary Upload Vulnerability in HPE Nimble Storage Products,"A security vulnerability exists within HPE Nimble Storage systems that may permit the upload of unauthorized update binaries to the storage arrays. This could lead to potential manipulation or deceptive behavior in the storage environment. HPE has addressed this issue in software updates, which are available in versions 5.0.10.100 or later, 5.2.1.0 or later, and 6.0.0.100 or later, ensuring stronger security protocols for users.",HP,HP Nimble Storage Hybrid Flash Arrays; Nimble Storage All Flash Arrays; Nimble Storage Secondary Flash Arrays,7.5,HIGH,0.0009399999980814755,false,,false,false,false,,,false,false,,2022-05-09T20:20:57.000Z,0
CVE-2022-23703,https://securityvulnerability.io/vulnerability/CVE-2022-23703,Security Flaw in HPE Nimble Storage Systems by Hewlett Packard Enterprise,"A security flaw has been identified in HPE Nimble Storage systems, affecting Hybrid Flash, All Flash, and Secondary Flash Arrays during software update processes. This vulnerability could enable an attacker to intercept and manipulate network communications linked to software updates initiated by the Nimble appliance. Affected versions include several prior to the fix found in NimbleOS version 5.0.10.100, along with versions 5.2.1.500 and 6.0.0.100. It is crucial for users to update to these secure versions to protect against potential threats.",HP,HP Nimble Storage Hybrid Flash Arrays; Nimble Storage All Flash Arrays; Nimble Storage Secondary Flash Arrays,7.5,HIGH,0.0008399999933317304,false,,false,false,false,,,false,false,,2022-04-12T16:11:37.000Z,0
CVE-2020-7138,https://securityvulnerability.io/vulnerability/CVE-2020-7138,,"Potential remote code execution security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to gain elevated privileges on the array. The following NimbleOS versions, and all subsequent releases, contain a software fix for this vulnerability: 3.9.3.0 4.5.6.0 5.0.9.0 5.1.4.100",HP,HP Nimble Storage Hybrid Flash Arrays; Nimble Storage All Flash Arrays; Nimble Storage Secondary Flash Arrays,8.8,HIGH,0.005419999826699495,false,,false,false,false,,,false,false,,2020-05-19T23:15:00.000Z,0
CVE-2020-7139,https://securityvulnerability.io/vulnerability/CVE-2020-7139,,"Potential remote access security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to access and modify sensitive information on the system. The following NimbleOS versions, and all subsequent releases, contain a software fix for this vulnerability: 3.9.3.0 4.5.6.0 5.0.9.0 5.1.4.100",HP,HP Nimble Storage Hybrid Flash Arrays; Nimble Storage All Flash Arrays; Nimble Storage Secondary Flash Arrays,8.1,HIGH,0.0006500000017695129,false,,false,false,false,,,false,false,,2020-05-19T23:15:00.000Z,0