cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-37939,https://securityvulnerability.io/vulnerability/CVE-2022-37939,Information Disclosure Vulnerability in HPE Superdome Flex Servers,"An identified security vulnerability in HPE Superdome Flex and Superdome Flex 280 servers could allow local exploitation to reveal sensitive information. HPE has released software updates to address this issue, providing solutions for affected versions, specifically v3.65.8 for Superdome Flex Servers and v1.45.8 for Superdome Flex 280 Servers. Users are advised to apply these updates promptly to ensure their systems remain secure.",HP,HP Superdome Flex Servers; HP Superdome Flex 280 Servers,2.3,LOW,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-03-08T20:48:26.082Z,0
CVE-2022-37933,https://securityvulnerability.io/vulnerability/CVE-2022-37933,Local Data Injection Vulnerability in HPE Superdome Flex and Superdome Flex 280 Servers,"A potential security vulnerability exists in the HPE Superdome Flex and Superdome Flex 280 servers that could be exploited by local attackers. This vulnerability allows unauthorized data injection, posing a significant risk to data integrity. HPE has released firmware updates to mitigate this issue, specifically in Superdome Flex firmware versions 3.60.50 and below, as well as Superdome Flex 280 servers on firmware versions 1.40.60 and below. Users are advised to apply these updates promptly to protect their systems.",HP,HP Superdome Flex Server; HP Superdome Flex 280 Server,7.3,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-01-05T07:15:00.000Z,0
CVE-2022-23702,https://securityvulnerability.io/vulnerability/CVE-2022-23702,Privilege Escalation Vulnerability in HPE Superdome Flex and Superdome Flex 280 Servers,"A security vulnerability has been identified in HPE Superdome Flex and HPE Superdome Flex 280 Servers, which could allow an administrator-level user to escalate their privileges. This vulnerability poses a significant risk as it enables unauthorized users to gain elevated access to critical resources. The issue has been addressed in the latest firmware update, with users encouraged to upgrade to HPE Superdome Flex Server Version 3.50.58 or later, and HPE Superdome Flex 280 Server Version 1.20.204 or later to ensure system security.",HP,HP Superdome Flex Server; HP Superdome Flex 280 Server,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-04-12T16:11:36.000Z,0
CVE-2021-26589,https://securityvulnerability.io/vulnerability/CVE-2021-26589,Cross Site Scripting Vulnerability in HPE Superdome Flex Servers,"A security vulnerability in HPE Superdome Flex Servers has been identified that could be exploited remotely through Cross Site Scripting (XSS). The root cause is related to the Session Cookie lacking an HttpOnly Attribute, which potentially exposes sensitive data to attackers. HPE has issued a firmware update to address and mitigate this issue, improving the overall security posture of the affected servers.",HP,HP Superdome Flex Server,6.1,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2021-10-19T14:10:18.000Z,0
CVE-2021-26581,https://securityvulnerability.io/vulnerability/CVE-2021-26581,,A potential security vulnerability has been identified in HPE Superdome Flex server. A denial of service attack can be remotely exploited leaving hung connections to the BMC web interface. The monarch BMC must be rebooted to recover from this situation. Other BMC management is not impacted. HPE has made the following software update to resolve the vulnerability in HPE Superdome Flex Server: Superdome Flex Server Firmware 3.30.142 or later.,HP,HP Superdome Flex Server,6.5,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2021-04-01T18:42:53.000Z,0
CVE-2020-7137,https://securityvulnerability.io/vulnerability/CVE-2020-7137,,A validation issue in HPE Superdome Flex's RMC component may allow local elevation of privilege. Apply HPE Superdome Flex Server version 3.25.46 or later to resolve this issue.,HP,HP Superdome Flex Server,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2020-05-19T23:15:00.000Z,0