Hpe Insight Remote Support vulnerabilities
9 known vulnerabilities affecting hpe/insight_remote_support.
Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH5MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-53676P2CRITICALCVSS 9.8fixed in 7.14.0.6292024-11-27
CVE-2024-53676 [CRITICAL] CWE-552 CVE-2024-53676: A directory traversal vulnerability in Hewlett Packard Enterprise Insight Remote Support may allow r
A directory traversal vulnerability in Hewlett Packard Enterprise Insight Remote Support may allow remote code execution.
nvd
CVE-2024-53675P2HIGHCVSS 7.5fixed in 7.14.0.6292024-11-26
CVE-2024-53675 [HIGH] CWE-91 CVE-2024-53675: An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
nvd
CVE-2024-53674P2HIGHCVSS 7.5fixed in 7.14.0.6292024-11-26
CVE-2024-53674 [HIGH] CWE-91 CVE-2024-53674: An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
nvd
CVE-2025-37098P2HIGHCVSS 7.5fixed in 7.15.0.6462025-07-01
CVE-2025-37098 [HIGH] CWE-22 CVE-2025-37098: A path traversal vulnerability exists in HPE Insight Remote Support (IRS) prior to v7.15.0.646.
A path traversal vulnerability exists in HPE Insight Remote Support (IRS) prior to v7.15.0.646.
nvd
CVE-2024-53673P2CRITICALCVSS 9.8fixed in 7.14.0.6292024-11-26
CVE-2024-53673 [CRITICAL] CWE-502 CVE-2024-53673: A java deserialization vulnerability in HPE Remote Insight Support may allow an unauthenticated atta
A java deserialization vulnerability in HPE Remote Insight Support may allow an unauthenticated attacker to execute code.
nvd
CVE-2025-37099P2CRITICALCVSS 9.8fixed in 7.15.0.6462025-07-01
CVE-2025-37099 [CRITICAL] CWE-94 CVE-2025-37099: A remote code execution vulnerability exists in HPE Insight Remote Support (IRS) prior to v7.15.0.64
A remote code execution vulnerability exists in HPE Insight Remote Support (IRS) prior to v7.15.0.646.
nvd
CVE-2024-11622P3HIGHCVSS 7.5fixed in 7.14.0.6292024-11-26
CVE-2024-11622 [HIGH] CWE-91 CVE-2024-11622: An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
nvd
CVE-2025-37097P3HIGHCVSS 7.5fixed in 7.15.0.6462025-07-01
CVE-2025-37097 [HIGH] CWE-749 CVE-2025-37097: A vulnerability in HPE Insight Remote Support (IRS) prior to v7.15.0.646 may allow an unauthenticate
A vulnerability in HPE Insight Remote Support (IRS) prior to v7.15.0.646 may allow an unauthenticated denial of service
nvd
CVE-2023-30904P4MEDIUMCVSS 5.5≥ 7.12, < 7.12.0.5452023-06-16
CVE-2023-30904 [MEDIUM] CWE-798 CVE-2023-30904: A security vulnerability in HPE Insight Remote Support may result in the local disclosure of privile
A security vulnerability in HPE Insight Remote Support may result in the local disclosure of privileged LDAP information.
nvd