cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-6573,https://securityvulnerability.io/vulnerability/CVE-2023-6573,,HPE OneView may have a missing passphrase during restore.,HP,HP Oneview,5.5,MEDIUM,0.0005200000014156103,false,false,false,false,,false,false,2024-01-23T17:13:31.781Z,0
CVE-2023-30909,https://securityvulnerability.io/vulnerability/CVE-2023-30909,Remote Authentication Bypass in HPE OneView APIs,"A security vulnerability that allows an attacker to bypass authentication mechanisms in certain HPE OneView APIs, potentially leading to unauthorized access. This flaw highlights the importance of implementing robust authentication and access control measures within API services to mitigate risks and protect sensitive data.",HP,HP Oneview,9.8,CRITICAL,0.002139999996870756,false,false,false,false,,false,false,2023-09-14T15:15:00.000Z,0
CVE-2022-37935,https://securityvulnerability.io/vulnerability/CVE-2022-37935,,"HPE OneView for VMware vCenter, in certain circumstances, may disclose the “HPE OneView” Username and Password.",HP,"HP Oneview For Vmware Vcenter,",5.5,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2023-02-18T01:27:45.128Z,0
CVE-2022-37927,https://securityvulnerability.io/vulnerability/CVE-2022-37927,,"URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hewlett Packard Enterprise HPE OneView Global Dashboard (OVGD).

",HP,HP Oneview Global Dashboard (ovgd),6.1,MEDIUM,0.0007200000109151006,false,false,false,false,,false,false,2022-12-12T13:15:00.000Z,0
CVE-2022-28625,https://securityvulnerability.io/vulnerability/CVE-2022-28625,,"A local disclosure of sensitive information vulnerability was discovered in HPE OneView version(s): Prior to 7.0 or 6.60.01. A low privileged user could locally exploit this vulnerability to disclose sensitive information resulting in a complete loss of confidentiality, integrity, and availability. To exploit this vulnerability, HPE OneView must be configured with credential access to external repositories. HPE has provided a software update to resolve this vulnerability in HPE OneView.",HP,HP Oneview,5.5,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2022-08-31T15:59:33.000Z,0
CVE-2022-28616,https://securityvulnerability.io/vulnerability/CVE-2022-28616,,A remote server-side request forgery (ssrf) vulnerability was discovered in HPE OneView version(s): Prior to 7.0. HPE has provided a software update to resolve this vulnerability in HPE OneView.,HP,HP Oneview,9.8,CRITICAL,0.0022899999748915434,false,false,false,false,,false,false,2022-05-17T20:04:17.000Z,0
CVE-2022-23706,https://securityvulnerability.io/vulnerability/CVE-2022-23706,,A remote cross-site scripting (xss) vulnerability was discovered in HPE OneView version(s): Prior to 7.0. HPE has provided a software update to resolve this vulnerability in HPE OneView.,HP,HP Oneview,6.1,MEDIUM,0.0005799999926239252,false,false,false,false,,false,false,2022-05-17T20:01:57.000Z,0
CVE-2022-28617,https://securityvulnerability.io/vulnerability/CVE-2022-28617,,A remote bypass security restrictions vulnerability was discovered in HPE OneView version(s): Prior to 7.0. HPE has provided a software update to resolve this vulnerability in HPE OneView.,HP,HP Oneview,9.8,CRITICAL,0.005030000116676092,false,false,false,false,,false,false,2022-05-17T19:59:15.000Z,0
CVE-2022-23700,https://securityvulnerability.io/vulnerability/CVE-2022-23700,,A local unauthorized read access to files vulnerability was discovered in HPE OneView version(s): Prior to 6.6. HPE has provided a software update to resolve this vulnerability in HPE OneView.,HP,HP Oneview,5.5,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2022-04-04T19:45:42.000Z,0
CVE-2022-23699,https://securityvulnerability.io/vulnerability/CVE-2022-23699,,A local authentication restriction bypass vulnerability was discovered in HPE OneView version(s): Prior to 6.6. HPE has provided a software update to resolve this vulnerability in HPE OneView.,HP,HP Oneview,7.8,HIGH,0.0004199999966658652,false,false,false,false,,false,false,2022-04-04T19:45:41.000Z,0
CVE-2022-23698,https://securityvulnerability.io/vulnerability/CVE-2022-23698,,A remote unauthenticated disclosure of information vulnerability was discovered in HPE OneView version(s): Prior to 6.6. HPE has provided a software update to resolve this vulnerability in HPE OneView.,HP,HP Oneview,7.5,HIGH,0.0018599999602884054,false,false,false,false,,false,false,2022-04-04T19:45:40.000Z,0
CVE-2022-23697,https://securityvulnerability.io/vulnerability/CVE-2022-23697,,A remote cross-site scripting (xss) vulnerability was discovered in HPE OneView version(s): Prior to 6.6. HPE has provided a software update to resolve this vulnerability in HPE OneView.,HP,HP Oneview,6.1,MEDIUM,0.0005799999926239252,false,false,false,false,,false,false,2022-04-04T19:45:39.000Z,0
CVE-2021-26585,https://securityvulnerability.io/vulnerability/CVE-2021-26585,,A potential vulnerability has been identified in HPE OneView Global Dashboard release 2.31 which could lead to a local disclosure of privileged information. HPE has provided an update to OneView Global Dashboard. The issue is resolved in 2.32.,HP,HP Oneview Global Dashboard,5.5,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2021-06-24T11:02:24.000Z,0
CVE-2021-26584,https://securityvulnerability.io/vulnerability/CVE-2021-26584,,A security vulnerability in HPE OneView for VMware vCenter (OV4VC) could be exploited remotely to allow Cross-Site Scripting. HPE has released the following software update to resolve the vulnerability in HPE OneView for VMware vCenter (OV4VC).,HP,HP Oneview For Vmware Vcenter With Operations Manager And Log Insight,6.1,MEDIUM,0.0005799999926239252,false,false,false,false,,false,false,2021-06-03T10:59:53.000Z,0
CVE-2020-7198,https://securityvulnerability.io/vulnerability/CVE-2020-7198,,"There is a remote escalation of privilege possible for a malicious user that has a OneView account in OneView and Synergy Composer. HPE has provided updates to Oneview and Synergy Composer: Update to version 5.5 of OneView, Composer, or Composer2.",HP,HP Oneview; HP Synergy Composer; HP Synergy Composer 2,8.8,HIGH,0.00570000009611249,false,false,false,false,,false,false,2020-11-06T14:14:04.000Z,0
CVE-2020-7130,https://securityvulnerability.io/vulnerability/CVE-2020-7130,,"HPE OneView Global Dashboard (OVGD) 1.9 has a remote information disclosure vulnerability. HPE OneView Global Dashboard - After Upgrade or Install of OVGD Version 1.9, Appliance Firewall May Leave Ports Open. This is resolved in OVGD 1.91 or later.",HP,HP Oneview Global Dashboard,7.5,HIGH,0.005260000005364418,false,false,false,false,,false,false,2020-03-04T20:21:40.000Z,0