cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-53676,https://securityvulnerability.io/vulnerability/CVE-2024-53676,Remote Code Execution Vulnerability Affects HPE Insight Remote Support,"A directory traversal vulnerability exists within Hewlett Packard Enterprise Insight Remote Support software that could be exploited by an attacker to gain unauthorized access to the system. This flaw allows an adversary to craft a malicious input, potentially leading to the execution of arbitrary code on the affected system. Proper configuration and ongoing security updates are crucial for mitigating the risks associated with this vulnerability.",HP,HP Insight Remote Support,9.8,CRITICAL,0.000910000002477318,false,,false,false,false,,,false,false,,2024-11-27T01:15:00.000Z,0
CVE-2024-53673,https://securityvulnerability.io/vulnerability/CVE-2024-53673,Unauthenticated Java Deserialization Vulnerability in HPE Remote Insight Support,"A vulnerability exists in HPE Remote Insight Support, characterized by improper handling of Java object deserialization. This flaw enables unauthenticated attackers to potentially execute arbitrary code within the affected systems. Exploitation of this vulnerability could lead to severe consequences, including system compromise and unauthorized access to sensitive data. Organizations using HPE Remote Insight Support are strongly advised to assess their security posture and implement appropriate mitigations to safeguard against potential attacks.",HP,Insight Remote Support,9.8,CRITICAL,0.0007099999929778278,false,,false,false,false,,,false,false,,2024-11-26T22:15:00.000Z,0
CVE-2024-53675,https://securityvulnerability.io/vulnerability/CVE-2024-53675,HPE Insight Remote Support XML External Entity Injection Vulnerability,"An XML external entity injection (XXE) vulnerability exists in HPE Insight Remote Support, which may allow remote attackers to exploit this weakness to disclose sensitive information under certain conditions. Implementing adequate input validation and configuring secure settings can mitigate risks associated with this vulnerability.",HP,HP Insight Remote Support,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2024-11-26T22:15:00.000Z,0
CVE-2024-53674,https://securityvulnerability.io/vulnerability/CVE-2024-53674,HPE Insight Remote Support XML External Entity Injection Vulnerability,"An XML external entity injection (XXE) vulnerability exists in HPE Insight Remote Support, potentially allowing remote users to exploit this weakness and disclose sensitive information under specific circumstances. This flaw emphasizes the importance of secure XML parsing configurations and highlights the risks associated with improperly validated XML input. Organizations using HPE Insight Remote Support should assess their environment for potential exposure and apply relevant security patches or mitigations as necessary.",HP,HP Insight Remote Support,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2024-11-26T22:15:00.000Z,0
CVE-2024-11622,https://securityvulnerability.io/vulnerability/CVE-2024-11622,HPE Insight Remote Support Exposes XML External Entity Injection Vulnerability,"An XML external entity injection (XXE) vulnerability exists within the HPE Insight Remote Support software, which can be exploited by remote users to gain unauthorized access to sensitive information. This vulnerability arises when the application processes XML inputs without adequate validation, potentially allowing attackers to craft malicious XML data. By exploiting this weakness, attackers may target system configurations or sensitive data stored within the server, leading to potential information disclosure. Security best practices recommend immediate evaluation and patching of the affected software versions to mitigate risks associated with this vulnerability.",HP,HP Insight Remote Support,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2024-11-26T21:31:11.004Z,0
CVE-2023-30904,https://securityvulnerability.io/vulnerability/CVE-2023-30904,Local Disclosure Vulnerability in HPE Insight Remote Support by HPE,"A security vulnerability exists in HPE Insight Remote Support, which may allow an authenticated user to access privileged LDAP information, potentially facilitating unauthorized access and information leakage. This issue highlights the importance of securing LDAP services and implementing proper access controls to protect sensitive data.",HP,HP Insight Remote Support,5.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-06-16T21:15:00.000Z,0