HP » Operations Agent : Security Vulnerabilities, CVEs, CVSS score >= 6
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 before 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Max CVSS
7.5
EPSS Score
3.64%
Published
2017-05-04
Updated
2019-04-23
CVE-2012-2020
Public exploit
Unspecified vulnerability in HP Operations Agent before 11.03.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1326.
Max CVSS
10.0
EPSS Score
94.95%
Published
2012-07-11
Updated
2019-10-09
CVE-2012-2019
Public exploit
Unspecified vulnerability in HP Operations Agent before 11.03.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1325.
Max CVSS
10.0
EPSS Score
94.95%
Published
2012-07-11
Updated
2019-10-09
ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register command.
Max CVSS
6.4
EPSS Score
3.06%
Published
2011-07-01
Updated
2017-08-29
Unspecified vulnerability in HP Operations Agent 7.36 and 8.6 on Windows allows local users to gain privileges via unknown vectors.
Max CVSS
6.8
EPSS Score
0.04%
Published
2010-09-08
Updated
2019-10-09
Unspecified vulnerability in HP Operations Agent 7.36 and 8.6 on Windows allows remote attackers to execute arbitrary code via unknown vectors.
Max CVSS
7.5
EPSS Score
1.34%
Published
2010-09-08
Updated
2019-10-09
HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote attackers to execute arbitrary code via unspecified vectors.
Max CVSS
10.0
EPSS Score
9.54%
Published
2010-02-09
Updated
2010-02-13
7 vulnerabilities found