Cisco Hyperflex Hx Data Platform — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Hyperflex Hx Data Platform, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2019-1958 — CVSS 8.8 (high): A vulnerability in the web-based management interface of Cisco HyperFlex Software could allow an unauthenticated, remote attacker to…
CVE-2018-15380 — CVSS 8.8 (high): A vulnerability in the cluster service manager of Cisco HyperFlex Software could allow an unauthenticated, adjacent attacker to execute…
CVE-2018-15382 — CVSS 8.6 (high): A vulnerability in Cisco HyperFlex Software could allow an unauthenticated, remote attacker to generate valid, signed session tokens. The…
CVE-2019-1664 — CVSS 7.8 (high): A vulnerability in the hxterm service of Cisco HyperFlex Software could allow an unauthenticated, local attacker to gain root access to all…
CVE-2017-12315 — CVSS 6.0 (medium): A vulnerability in system logging when replication is being configured with the Cisco HyperFlex System could allow an authenticated, local…
CVE-2018-15407 — CVSS 5.5 (medium): A vulnerability in the installation process of Cisco HyperFlex Software could allow an authenticated, local attacker to read sensitive…
CVE-2018-15429 — CVSS 5.3 (medium): A vulnerability in the web-based UI of Cisco HyperFlex HX Data Platform Software could allow an unauthenticated, remote attacker to access…
CVE-2021-1499 — CVSS 5.3 (medium): A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could allow an unauthenticated, remote attacker…
CVE-2019-1666 — CVSS 5.3 (medium): A vulnerability in the Graphite service of Cisco HyperFlex software could allow an unauthenticated, remote attacker to retrieve data from…
CVE-2023-20263 — CVSS 4.7 (medium): A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could allow an unauthenticated, remote attacker…
CVE-2018-15423 — CVSS 4.7 (medium): A vulnerability in the web UI of Cisco HyperFlex Software could allow an unauthenticated, remote attacker to affect the integrity of a…
CVE-2019-1665 — CVSS 4.7 (medium): A vulnerability in the web-based management interface of Cisco HyperFlex software could allow an unauthenticated, remote attacker to…
CVE-2019-1667 — CVSS 3.3 (low): A vulnerability in the Graphite interface of Cisco HyperFlex software could allow an authenticated, local attacker to write arbitrary data…