Hp

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2013-6197 1Hp 3Service Manager Service Manager Web ClientService Manager Web Tier Apr 29, 2026 Dec 29, 2013 N/A· v4 N/A· v3 5.2 MEDIUM· v2 Unspecified vulnerability in HP Service Manager WebTier and Windows Client 9.20 and 9.21 before 9.21.661 p8 allows remote authenticated users to execute arbitrary code via unknown vectors.
CVE-2013-6189 1Hp 1Application Information Optimizer Apr 29, 2026 Dec 29, 2013 N/A· v4 N/A· v3 10.0 HIGH· v2 Unspecified vulnerability in the Archive Query Server in HP Application Information Optimizer (formerly HP Database Archiving) 6.2, 6.3, 6.4, and 7.0 allows remote attackers to execute arbitrary code via unknown vectors,...Show more Unspecified vulnerability in the Archive Query Server in HP Application Information Optimizer (formerly HP Database Archiving) 6.2, 6.3, 6.4, and 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1666.Show less
CVE-2013-6196 1Hp 1Autonomy Ultraseek Apr 29, 2026 Dec 21, 2013 N/A· v4 N/A· v3 3.5 LOW· v2 Cross-site scripting (XSS) vulnerability in HP Autonomy Ultraseek 5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVE-2013-6193 1Hp 25Color Laserjet Cm1312nfi Multifunction Printer Color Laserjet Cm2320n Multifunction PrinterColor Laserjet Cp1515+22 more Apr 29, 2026 Dec 17, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unspecified vulnerability on HP LaserJet M1522n and M2727; LaserJet Pro 100, 300, 400, CM1415fnw, CP1, M121, M1536dnf, and P1; Color LaserJet CM and CP; and TopShot LaserJet Pro M275 printers allows remote attackers...Show more Unspecified vulnerability on HP LaserJet M1522n and M2727; LaserJet Pro 100, 300, 400, CM1415fnw, CP1, M121, M1536dnf, and P1; Color LaserJet CM* and CP*; and TopShot LaserJet Pro M275 printers allows remote attackers to cause a denial of service via unknown vectors.Show less
CVE-2013-6192 1Hp 1Operations Orchestration Apr 29, 2026 Dec 17, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Cross-site request forgery (CSRF) vulnerability in HP Operations Orchestration before 9 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2013-6191 1Hp 1Operations Orchestration Apr 29, 2026 Dec 17, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2013-4845 1Hp 2Officejet Pro 8500 Officejet Pro 8500 Firmware Apr 29, 2026 Dec 14, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability on HP Officejet Pro 8500 (aka A909) All-in-One printers allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2013-6427 1Hp 1Linux Imaging And Printing Project Apr 29, 2026 Dec 9, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing (HPLIP) 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control...Show more upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing (HPLIP) 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream.Show less
CVE-2013-4844 1Hp 2Service Center Service Manager Apr 29, 2026 Nov 29, 2013 N/A· v4 N/A· v3 7.5 HIGH· v2 Unspecified vulnerability in HP Service Manager 7.11, 9.21, 9.30, 9.31, and 9.32, and ServiceCenter 6.2.8, allows remote attackers to execute arbitrary code via unknown vectors.
CVE-2013-6852 1Hp 12620 24 Poe+ Switch Apr 29, 2026 Nov 22, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Cross-site request forgery (CSRF) vulnerability in html/json.html on HP 2620 switches allows remote attackers to hijack the authentication of administrators for requests that change an administrative password via the set...Show more Cross-site request forgery (CSRF) vulnerability in html/json.html on HP 2620 switches allows remote attackers to hijack the authentication of administrators for requests that change an administrative password via the setPassword method.Show less
CVE-2013-4843 1Hp 2Integrated Lights Out 4 Integrated Lights Out Firmware Apr 29, 2026 Nov 18, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Unspecified vulnerability in HP Integrated Lights-Out 4 (iLO4) with firmware before 1.32 allows remote authenticated users to obtain sensitive information via unknown vectors.
CVE-2013-4842 1Hp 2Integrated Lights Out 4 Integrated Lights Out Firmware Apr 29, 2026 Nov 18, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in HP Integrated Lights-Out 4 (iLO4) with firmware before 1.32 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2013-4839 1Hp 1Loadrunner Apr 29, 2026 Nov 4, 2013 N/A· v4 N/A· v3 7.5 HIGH· v2 Unspecified vulnerability in Virtual User Generator in HP LoadRunner before 11.52 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1851.
CVE-2013-4838 1Hp 1Loadrunner Apr 29, 2026 Nov 4, 2013 N/A· v4 N/A· v3 10.0 HIGH· v2 Unspecified vulnerability in Virtual User Generator in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1850.
CVE-2013-4837 1Hp 1Loadrunner Apr 29, 2026 Nov 4, 2013 N/A· v4 N/A· v3 10.0 HIGH· v2 Unspecified vulnerability in Virtual User Generator in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1832.
CVE-2013-4836 1Hp 1Alm Synchronizer Apr 29, 2026 Nov 4, 2013 N/A· v4 N/A· v3 7.5 HIGH· v2 Unspecified vulnerability in the GossipService SOAP Request implementation in the Synchronizer component before 1.4.2 in HP Application LifeCycle Management (ALM) allows remote attackers to execute arbitrary code via unk...Show more Unspecified vulnerability in the GossipService SOAP Request implementation in the Synchronizer component before 1.4.2 in HP Application LifeCycle Management (ALM) allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1759.Show less
CVE-2013-4835 1Hp 1Sitescope Apr 29, 2026 Nov 4, 2013 N/A· v4 N/A· v3 7.5 HIGH· v2 The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x before 11.22 allows remote attackers to bypass authentication and execute arbitrary code via a direct request to the issueSiebelCmd method, aka ZDI-CAN-176...Show more The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x before 11.22 allows remote attackers to bypass authentication and execute arbitrary code via a direct request to the issueSiebelCmd method, aka ZDI-CAN-1765.Show less
CVE-2013-4834 1Hp 1Application Lifecycle Management Apr 29, 2026 Nov 4, 2013 N/A· v4 N/A· v3 7.5 HIGH· v2 Unspecified vulnerability in the client component in HP Application LifeCycle Management (ALM) before 11 p11 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1327.
CVE-2013-4833 1Hp 1Service Manager Apr 29, 2026 Oct 16, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in HP Service Manager 9.30 through 9.32 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2013-4832 1Hp 1Service Manager Apr 29, 2026 Oct 16, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 HP Service Manager 9.30 through 9.32 allows remote authenticated users to obtain sensitive information via unspecified vectors.

Previous 1...636465...117 Next