Vulnerabilities (CVE)

Filtered by vendor Hp Subscribe
Filtered by product San\/iq
Total 9 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-2352 3 Dell, Hp, Ibm 20 Poweredge 2950, Dl320s, Lefthand Nsm2060 and 17 more 2024-11-21 9.4 HIGH N/A
LeftHand OS (aka SAN iQ) 10.5 and earlier on HP StoreVirtual Storage devices does not provide a mechanism for disabling the HP Support challenge-response root-login feature, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of an unused one-time password.
CVE-2012-4362 1 Hp 2 San\/iq, Virtual San Appliance 2024-11-21 4.0 MEDIUM N/A
hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838.
CVE-2012-4361 1 Hp 2 San\/iq, Virtual San Appliance 2024-11-21 7.7 HIGH N/A
lhn/public/network/ping in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the second parameter.
CVE-2012-3285 1 Hp 2 Lefthand P4000 Virtual San Appliance, San\/iq 2024-11-21 10.0 HIGH N/A
Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1513.
CVE-2012-3284 1 Hp 2 Lefthand P4000 Virtual San Appliance, San\/iq 2024-11-21 10.0 HIGH N/A
Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1512.
CVE-2012-3283 1 Hp 2 Lefthand P4000 Virtual San Appliance, San\/iq 2024-11-21 10.0 HIGH N/A
Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1511.
CVE-2012-3282 1 Hp 2 Lefthand P4000 Virtual San Appliance, San\/iq 2024-11-21 10.0 HIGH N/A
Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1468.
CVE-2012-2986 1 Hp 2 San\/iq, Virtual San Appliance 2024-11-21 7.7 HIGH N/A
lhn/public/network/ping in HP SAN/iQ 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) first, (2) third, or (3) fourth parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-4361.
CVE-2011-4157 1 Hp 3 Centralized Management Console Software, San\/iq, Storageworks P4000 Virtual San Appliance 2024-11-21 10.0 HIGH N/A
Stack-based buffer overflow in hydra.exe in HP SAN/iQ before 9.5 on the HP StorageWorks P4000 Virtual SAN Appliance allows remote attackers to execute arbitrary code via a crafted login request.