Every CVE whose affected-product data names Hp Data Protector, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2011-0921 — CVSS 10.0 (critical): crs.exe in the Cell Manager Service in the client in HP Data Protector does not properly validate credentials associated with the hostname…
CVE-2011-0922 — CVSS 10.0 (critical): The client in HP Data Protector allows remote attackers to execute arbitrary programs via an EXEC_SETUP command that references a UNC share…
CVE-2011-0923 — CVSS 10.0 (critical): The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code…
CVE-2011-0924 — CVSS 10.0 (critical): The client in HP Data Protector does not verify the contents of files associated with the EXEC_CMD command, which allows remote attackers…
CVE-2016-2005 — CVSS 9.8 (critical): HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified…
CVE-2016-2006 — CVSS 9.8 (critical): HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified…
CVE-2016-2007 — CVSS 9.8 (critical): HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified…
CVE-2016-2008 — CVSS 9.8 (critical): HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified…
CVE-2017-5807 — CVSS 9.8 (critical): A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found.
CVE-2016-2004 — CVSS 9.8 (critical): HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allow remote attackers to execute arbitrary code via unspecified…
CVE-2011-2399 — CVSS 7.8 (high): Unspecified vulnerability in the Media Management Daemon (mmd) in HP Data Protector 6.11 and earlier allows remote attackers to cause a…
CVE-2017-5808 — CVSS 7.5 (high): A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found.
CVE-2014-5160 — CVSS 6.4 (medium): Multiple directory traversal vulnerabilities in crs.exe in the Cell Request Service in HP Data Protector allow remote attackers to create…
CVE-2017-5809 — CVSS 5.5 (medium): A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found.