Hp Hp-Ux vulnerabilities
275 known vulnerabilities affecting hp/hp-ux.
Total CVEs
275
CISA KEV
1
actively exploited
Public exploits
50
Exploited in wild
2
Severity breakdown
CRITICAL42HIGH109MEDIUM96LOW28
Vulnerabilities
Page 2 of 14
CVE-2010-2712MEDIUMCVSS 6.8vb.11.11vb.11.23+1 more2010-08-30
CVE-2010-2712 [MEDIUM] CVE-2010-2712: Unspecified vulnerability in Software Distributor (sd) in HP HP-UX B.11.11, B.11.23, and B.11.31 all
Unspecified vulnerability in Software Distributor (sd) in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors.
nvd
CVE-2010-1032MEDIUMCVSS 4.9vb.11.112010-04-21
CVE-2010-1032 [MEDIUM] CVE-2010-1032: Unspecified vulnerability in HP HP-UX B.11.11 allows local users to cause a denial of service via un
Unspecified vulnerability in HP HP-UX B.11.11 allows local users to cause a denial of service via unknown vectors.
nvd
CVE-2010-1030MEDIUMCVSS 4.4vb.11.312010-03-31
CVE-2010-1030 [MEDIUM] CVE-2010-1030: Unspecified vulnerability in HP-UX B.11.31, with AudFilter rules enabled, allows local users to caus
Unspecified vulnerability in HP-UX B.11.31, with AudFilter rules enabled, allows local users to cause a denial of service via unknown vectors.
nvd
CVE-2010-0451MEDIUMCVSS 4.0v11.31vb.11.312010-03-29
CVE-2010-0451 [MEDIUM] CWE-264 CVE-2010-0451: The installation process for NFS/ONCplus B.11.31_08 and earlier on HP HP-UX B.11.31 changes the NFS_
The installation process for NFS/ONCplus B.11.31_08 and earlier on HP HP-UX B.11.31 changes the NFS_SERVER setting in the nfsconf file, which might allow remote attackers to obtain filesystem access via NFS requests.
nvd
CVE-2009-2679HIGHCVSS 7.8vb.11.11vb.11.23+1 more2009-10-05
CVE-2009-2679 [HIGH] CVE-2009-2679: Unspecified vulnerability in bootpd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attacker
Unspecified vulnerability in bootpd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service via unknown attack vectors.
nvd
CVE-2009-2682HIGHCVSS 7.2vb.11.23vb.11.312009-09-24
CVE-2009-2682 [HIGH] CWE-264 CVE-2009-2682: Unspecified vulnerability in Role-Based Access Control (RBAC) in HP HP-UX B.11.23 and B.11.31 allows
Unspecified vulnerability in Role-Based Access Control (RBAC) in HP HP-UX B.11.23 and B.11.31 allows local users to bypass intended access restrictions via unknown vectors.
nvd
CVE-2009-0719MEDIUMCVSS 6.0vb.11.11vb.11.23+1 more2009-04-29
CVE-2009-0719 [MEDIUM] CVE-2009-0719: Unspecified vulnerability in useradd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to
Unspecified vulnerability in useradd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to access arbitrary files and directories via unknown vectors, a different issue than CVE-2008-1660.
nvd
CVE-2009-0207MEDIUMCVSS 6.8vb.11.11vb.11.31+1 more2009-03-25
CVE-2009-0207 [MEDIUM] CVE-2009-0207: Unspecified vulnerability in HP-UX B.11.11 running VERITAS Oracle Disk Manager (VRTSodm) 3.5, B.11.2
Unspecified vulnerability in HP-UX B.11.11 running VERITAS Oracle Disk Manager (VRTSodm) 3.5, B.11.23 running VRTSodm 4.1 or VERITAS File System (VRTSvxfs) 4.1, B.11.23 running VRTSodm 5.0 or VRTSvxfs 5.0, and B.11.31 running VRTSodm 5.0 allows local users to gain root privileges via unknown vectors.
nvd
CVE-2009-0418CRITICALCVSS 9.3vb.11.11vb.11.23+1 more2009-02-04
CVE-2009-0418 [CRITICAL] CVE-2009-0418: The IPv6 Neighbor Discovery Protocol (NDP) implementation in HP HP-UX B.11.11, B.11.23, and B.11.31
The IPv6 Neighbor Discovery Protocol (NDP) implementation in HP HP-UX B.11.11, B.11.23, and B.11.31 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity), read private network traffic, and possibly execute arbitrary code via a spoofed message that modifies the Forward In
nvd
CVE-2008-4418HIGHCVSS 7.8vb.11.11vb.11.23+1 more2008-12-11
CVE-2008-4418 [HIGH] CVE-2008-4418: Unspecified vulnerability in DCE in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers t
Unspecified vulnerability in DCE in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service via unknown vectors.
nvd
CVE-2008-4416MEDIUMCVSS 4.6vb.11.312008-12-05
CVE-2008-4416 [MEDIUM] CVE-2008-4416: Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of
Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors.
nvd
CVE-2008-1668CRITICALCVSS 10.0v11.112008-08-13
CVE-2008-1668 [CRITICAL] CWE-264 CVE-2008-1668: ftpd.c in (1) wu-ftpd 2.4.2 and (2) ftpd in HP HP-UX B.11.11 assigns uid 0 to the FTP client in cert
ftpd.c in (1) wu-ftpd 2.4.2 and (2) ftpd in HP HP-UX B.11.11 assigns uid 0 to the FTP client in certain operating-system misconfigurations in which PAM authentication can succeed even though no passwd entry is available for a user, which allows remote attackers to gain privileges, as demonstrated by a login attempt for an LDAP account when nsswitch.
nvd
CVE-2008-1664HIGHCVSS 7.8v11.23v11.312008-08-08
CVE-2008-1664 [HIGH] CVE-2008-1664: Unspecified vulnerability in libc on HP HP-UX B.11.23 and B.11.31 allows remote attackers to cause a
Unspecified vulnerability in libc on HP HP-UX B.11.23 and B.11.31 allows remote attackers to cause a denial of service via unknown vectors.
nvd
CVE-2008-1662CRITICALCVSS 10.0vb.11.11vb.11.232008-08-01
CVE-2008-1662 [CRITICAL] CWE-16 CVE-2008-1662: Unspecified vulnerability in the HP System Administration Manager (SAM) on HP-UX B.11.11 and B.11.23
Unspecified vulnerability in the HP System Administration Manager (SAM) on HP-UX B.11.11 and B.11.23, when used to configure NFS, might allow remote attackers to read or modify arbitrary files, related to an "empty systems list."
nvd
CVE-2008-1660MEDIUMCVSS 6.3v11.11v11.23+1 more2008-05-21
CVE-2008-1660 [MEDIUM] CVE-2008-1660: Unspecified vulnerability in useradd on HP-UX B.11.11, B.11.23, and B.11.31 allows local users to ac
Unspecified vulnerability in useradd on HP-UX B.11.11, B.11.23, and B.11.31 allows local users to access arbitrary files and directories via unspecified vectors.
nvd
CVE-2008-0713MEDIUMCVSS 6.8v11.11v11.23+1 more2008-05-13
CVE-2008-0713 [MEDIUM] CVE-2008-0713: Unspecified vulnerability in the FTP server for HP-UX B.11.11, B.11.23, and B.11.31 allows remote au
Unspecified vulnerability in the FTP server for HP-UX B.11.11, B.11.23, and B.11.31 allows remote authenticated users to cause a denial of service (FTP server outage) via unknown attack vectors.
nvd
CVE-2007-6425CRITICALCVSS 10.0v11.312008-01-23
CVE-2007-6425 [CRITICAL] CWE-119 CVE-2007-6425: Unspecified vulnerability in HP-UX B.11.31, when running ARPA Transport, allows remote attackers to
Unspecified vulnerability in HP-UX B.11.31, when running ARPA Transport, allows remote attackers to cause a denial of service via unknown vectors.
nvd
CVE-2007-6419HIGHCVSS 7.8v11.11v11.23+1 more2007-12-24
CVE-2007-6419 [HIGH] CVE-2007-6419: Unspecified vulnerability in rpc.yppasswdd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote a
Unspecified vulnerability in rpc.yppasswdd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.
nvd
CVE-2007-6195CRITICALCVSS 10.0v11.11v11.232007-12-15
CVE-2007-6195 [CRITICAL] CWE-119 CVE-2007-6195: Buffer overflow in the sw_rpc_agent_init function in swagentd in Software Distributor (SD), and poss
Buffer overflow in the sw_rpc_agent_init function in swagentd in Software Distributor (SD), and possibly other DCE applications, in HP HP-UX B.11.11 and B.11.23 allows remote attackers to execute arbitrary code or cause a denial of service via malformed arguments in an opcode 0x04 DCE RPC request.
nvd
CVE-2007-5946HIGHCVSS 7.2v11.23v11.312007-11-14
CVE-2007-5946 [HIGH] CVE-2007-5946: Unspecified vulnerability in the Aries PA-RISC emulator on HP-UX B.11.23 and B.11.31 on the IA-64 pl
Unspecified vulnerability in the Aries PA-RISC emulator on HP-UX B.11.23 and B.11.31 on the IA-64 platform allows local users to obtain unspecified access.
nvd