cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-38401,https://securityvulnerability.io/vulnerability/CVE-2023-38401,Local Privilege Escalation in HPE Aruba Networking Virtual Intranet Access (VIA) Microsoft Windows Client,"A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client allows local users to elevate their privileges. If successfully exploited, an attacker may execute arbitrary code with NT AUTHORITY\SYSTEM privileges, potentially compromising the operating system's integrity. This vulnerability highlights the importance of safeguarding local access and applying necessary updates to mitigate the risk.",HP,HP Aruba Networking Virtual Intranet Access (via),7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-08-15T19:15:00.000Z,0
CVE-2023-38402,https://securityvulnerability.io/vulnerability/CVE-2023-38402,Arbitrary File Overwrite in HPE Aruba Networking Virtual Intranet Access (VIA) Microsoft Windows Client,"A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client allows unauthorized users to overwrite files with SYSTEM-level privileges. An attacker exploiting this vulnerability could potentially trigger a Denial-of-Service condition that disrupts the Microsoft Windows operating system boot process, leading to significant operational disruptions. Organizations using the affected VIA client should review their systems for potential exploitation risks and follow best practices to mitigate this vulnerability.",HP,HP Aruba Networking Virtual Intranet Access (via),7.1,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-08-15T19:15:00.000Z,0
CVE-2018-7071,https://securityvulnerability.io/vulnerability/CVE-2018-7071,,HPE has identified a remote access to sensitive information vulnerability in HPE Network Function Virtualization Director (NFVD) 4.2.1 prior to gui patch 3.,HP,HP Network Function Virtualization Director (nfvd),4.3,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2018-08-06T20:00:00.000Z,0
CVE-2015-2121,https://securityvulnerability.io/vulnerability/CVE-2015-2121,,"HP Network Virtualization for LoadRunner and Performance Center 8.61 and 11.52 allows remote attackers to read arbitrary files via a crafted filename in a URL to the (1) HttpServlet or (2) NetworkEditorController component, aka ZDI-CAN-2569.",HP,Network Virtualization,,,0.08208999782800674,false,,false,false,false,,,false,false,,2015-05-25T17:00:00.000Z,0
CVE-2014-2625,https://securityvulnerability.io/vulnerability/CVE-2014-2625,,"Directory traversal vulnerability in the storedNtxFile function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to read arbitrary files via crafted input, aka ZDI-CAN-2023.",HP,Network Virtualization,,,0.12043000012636185,false,,false,false,false,,,false,false,,2014-07-26T15:00:00.000Z,0
CVE-2014-2626,https://securityvulnerability.io/vulnerability/CVE-2014-2626,,"Directory traversal vulnerability in the toServerObject function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to create files, and consequently execute arbitrary code, via crafted input, aka ZDI-CAN-2024.",HP,Network Virtualization,,,0.9017900228500366,false,,false,false,false,,,false,false,,2014-07-26T15:00:00.000Z,0