Every CVE whose affected-product data names Hp Network Automation, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2016-1988 — CVSS 9.8 (critical): HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive…
CVE-2016-1989 — CVSS 9.8 (critical): HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive…
CVE-2017-5814 — CVSS 9.8 (critical): A remote sql injection authentication bypass in HPE Network Automation version 9.1x, 9.2x, 10.0x, 10.1x and 10.2x were found.
CVE-2016-8511 — CVSS 9.8 (critical): A Remote Code Execution vulnerability in HPE Network Automation using RPCServlet and Java Deserialization version v9.1x, v9.2x, v10.00…
CVE-2017-5810 — CVSS 9.8 (critical): A remote sql injection vulnerability in HPE Network Automation version 9.1x, 9.2x, 10.0x, 10.1x and 10.2x were found.
CVE-2011-4790 — CVSS 9.3 (critical): Unspecified vulnerability in HP Network Automation 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to execute arbitrary code via unknown…
CVE-2018-6493 — CVSS 8.8 (high): SQL Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11, 2018.02 and in Network Automation, version 10.00…
CVE-2016-4386 — CVSS 7.8 (high): HPE Network Automation Software 10.10 allows local users to write to arbitrary files via unspecified vectors.
CVE-2017-5811 — CVSS 7.5 (high): A remote code execution vulnerability in HPE Network Automation version 9.1x, 9.2x, 10.0x, 10.1x and 10.2x were found.
CVE-2017-5812 — CVSS 7.5 (high): A remote sql information disclosure vulnerability in HPE Network Automation version 9.1x, 9.2x, 10.0x, 10.1x and 10.2x were found.
CVE-2016-4385 — CVSS 7.3 (high): The RMI service in HP Network Automation Software 9.1x, 9.2x, 10.0x before 10.00.02.01, and 10.1x before 10.11.00.01 allows remote…
CVE-2014-2646 — CVSS 7.2 (high): Unspecified vulnerability in HP Network Automation 9.10 and 9.20 allows local users to bypass intended access restrictions via unknown…
CVE-2011-2403 — CVSS 6.5 (medium): SQL injection vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote authenticated users to execute arbitrary…
CVE-2017-5813 — CVSS 6.3 (medium): A remote unauthenticated access vulnerability in HPE Network Automation version 9.1x, 9.2x, 10.0x, 10.1x and 10.2x were found.
CVE-2011-1725 — CVSS 5.0 (medium): Unspecified vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to obtain sensitive information…
CVE-2018-6492 — CVSS 4.7 (medium): Persistent Cross-Site Scripting, and non-persistent HTML Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11…
CVE-2011-2402 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to inject…