Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling.
Max CVSS
7.5
EPSS Score
0.29%
Published
2010-12-07
Updated
2020-07-31
Unspecified vulnerability in HP StorageWorks Storage Mirroring 5.x before 5.2.2.1771.2 allows remote attackers to execute arbitrary code via unknown vectors.
Max CVSS
10.0
EPSS Score
11.09%
Published
2010-12-22
Updated
2013-07-10
HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011, TS100R025, TS100P002, TS200R005, TS201R014, and TS201R015 installs an undocumented admin account with a default "!admin" password, which allows remote attackers to gain privileges.
Max CVSS
9.0
EPSS Score
0.65%
Published
2010-12-17
Updated
2018-10-10
Cross-site scripting (XSS) vulnerability in HP Discovery & Dependency Mapping Inventory (DDMI) 2.5x, 7.5x, and 7.6x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
4.3
EPSS Score
1.40%
Published
2010-12-22
Updated
2011-01-11
Stack-based buffer overflow in HP Power Manager (HPPM) before 4.3.2 allows remote attackers to execute arbitrary code via a long Login variable to the management web server.
Max CVSS
9.3
EPSS Score
65.00%
Published
2010-12-22
Updated
2019-10-09
HP Insight Management Agents before 8.6 allows remote attackers to obtain sensitive information via an unspecified request that triggers disclosure of the full path.
Max CVSS
5.0
EPSS Score
0.63%
Published
2010-12-22
Updated
2011-01-11
Cross-site scripting (XSS) vulnerability in HP Insight Diagnostics Online Edition before 8.5.1.3712 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.28%
Published
2010-12-22
Updated
2011-01-11
Unspecified vulnerability in HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform on Integrity servers allows local users to gain privileges or cause a denial of service via unknown vectors.
Max CVSS
5.7
EPSS Score
0.04%
Published
2010-12-22
Updated
2011-01-11
Cross-site scripting (XSS) vulnerability in the Contacts Application in HP Palm webOS before 2.0 allows remote attackers to inject arbitrary web script or HTML via a crafted vCard file.
Max CVSS
4.3
EPSS Score
0.99%
Published
2010-12-08
Updated
2013-09-09
HP HP-UX B.11.11, B.11.23, and B.11.31 does not properly support threaded processes, which allows remote authenticated users to cause a denial of service via unspecified vectors.
Max CVSS
6.8
EPSS Score
0.88%
Published
2010-12-08
Updated
2017-09-19
The default configuration of the PJL Access value in the File System External Access settings on HP LaserJet MFP printers, Color LaserJet MFP printers, and LaserJet 4100, 4200, 4300, 5100, 8150, and 9000 printers enables PJL commands that use the device's filesystem, which allows remote attackers to read arbitrary files via a command inside a print job, as demonstrated by a directory traversal attack.
Max CVSS
7.8
EPSS Score
8.97%
Published
2010-11-17
Updated
2017-08-17
Cross-site request forgery (CSRF) vulnerability in HP Insight Control for Linux before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Max CVSS
6.8
EPSS Score
0.27%
Published
2010-11-02
Updated
2017-08-17
Unspecified vulnerability in HP Insight Orchestration before 6.2 allows remote attackers to bypass intended access restrictions, and obtain sensitive information or modify data, via unknown vectors.
Max CVSS
6.4
EPSS Score
0.33%
Published
2010-11-02
Updated
2019-10-09
Unspecified vulnerability in HP Insight Orchestration before 6.2 allows remote attackers to read arbitrary files via unknown vectors.
Max CVSS
5.0
EPSS Score
0.26%
Published
2010-11-02
Updated
2019-10-09
Unspecified vulnerability in HP Insight Managed System Setup Wizard before 6.2 allows remote attackers to read arbitrary files via unknown vectors.
Max CVSS
5.0
EPSS Score
0.46%
Published
2010-11-02
Updated
2017-08-17
Unspecified vulnerability in HP Insight Recovery before 6.2 allows remote attackers to read arbitrary files via unknown vectors.
Max CVSS
5.0
EPSS Score
0.42%
Published
2010-11-02
Updated
2010-11-11
Cross-site scripting (XSS) vulnerability in HP Insight Recovery before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
4.3
EPSS Score
1.32%
Published
2010-11-02
Updated
2010-11-11
Unspecified vulnerability in HP Insight Control Performance Management before 6.1 update 2 allows remote attackers to read arbitrary files via unknown vectors.
Max CVSS
5.0
EPSS Score
0.63%
Published
2010-11-02
Updated
2017-08-17
Cross-site request forgery (CSRF) vulnerability in HP Insight Control Performance Management before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Max CVSS
6.8
EPSS Score
0.28%
Published
2010-11-02
Updated
2017-08-17
Unspecified vulnerability in HP Insight Control Performance Management before 6.2 allows remote authenticated users to gain privileges via unknown vectors.
Max CVSS
8.0
EPSS Score
0.55%
Published
2010-11-02
Updated
2017-08-17
Cross-site scripting (XSS) vulnerability in HP Insight Control Performance Management before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
4.3
EPSS Score
1.86%
Published
2010-11-02
Updated
2017-08-17
Unspecified vulnerability in HP Storage Essentials before 6.3.0, when LDAP authentication is enabled, allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors.
Max CVSS
7.5
EPSS Score
1.56%
Published
2010-10-28
Updated
2011-01-04
Unspecified vulnerability in LoadRunner Web Tours 9.10 in HP LoadRunner 9.1 and earlier allows remote attackers to cause a denial of service, and possibly obtain sensitive information or modify data, via unknown vectors.
Max CVSS
7.5
EPSS Score
0.91%
Published
2010-10-28
Updated
2010-11-11
Unspecified vulnerability in the camera application in HP Palm webOS 1.4.1 allows local users to overwrite arbitrary files via unknown vectors.
Max CVSS
5.6
EPSS Score
0.04%
Published
2010-10-28
Updated
2010-11-11
Unspecified vulnerability in the service API in HP Palm webOS 1.4.1 allows local users to gain privileges by leveraging the ability to perform certain service calls.
Max CVSS
6.2
EPSS Score
0.04%
Published
2010-10-28
Updated
2010-11-11
120 vulnerabilities found
1 2 3 4 5
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!