CPE-D768C23E-28F9-4A82-9159-8CBBC960071E Detail

CPE Details

HP Moonshot Provisioning Manager 1.20

Vendor

Product

moonshot_provisioning_manager

Version

1.20

Created

2021-02-18
15h15 +00:00

Modified

2021-02-18
15h15 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:hp:moonshot_provisioning_manager:1.20:::::::*

Informations

Vendor

Product

moonshot_provisioning_manager

Version

1.20

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2021-25140	2021-02-09 15h08 +00:00	A potential security vulnerability has been identified in the HPE Moonshot Provisioning Manager v1.20. The HPE Moonshot Provisioning Manager is an application that is installed in a VMWare or Microsoft Hyper-V environment that is used to setup and configure an HPE Moonshot 1500 chassis. This vulnerability could be remotely exploited by an unauthenticated user to cause a directory traversal in user supplied input to the `khuploadfile.cgi` CGI ELF. The directory traversal could lead to Remote Code Execution, Denial of Service, and/or compromise system integrity. Note: HPE recommends that customers discontinue the use of the HPE Moonshot Provisioning Manager. The HPE Moonshot Provisioning Manager application is discontinued, no longer supported, is not available to download from the HPE Support Center, and no patch is available.	9.8	Critical
CVE-2021-25139	2021-02-09 15h04 +00:00	A potential security vulnerability has been identified in the HPE Moonshot Provisioning Manager v1.20. The HPE Moonshot Provisioning Manager is an application that is installed in a VMWare or Microsoft Hyper-V environment that is used to setup and configure an HPE Moonshot 1500 chassis. This vulnerability could be remotely exploited by an unauthenticated user to cause a stack based buffer overflow using user supplied input to the `khuploadfile.cgi` CGI ELF. The stack based buffer overflow could lead to Remote Code Execution, Denial of Service, and/or compromise system integrity. Note: HPE recommends that customers discontinue the use of the HPE Moonshot Provisioning Manager. The HPE Moonshot Provisioning Manager application is discontinued, no longer supported, is not available to download from the HPE Support Center, and no patch is available.	9.8	Critical
CVE-2018-7072	2018-08-06 18h00 +00:00	A remote bypass of security restrictions vulnerability was identified in HPE Moonshot Provisioning Manager prior to v1.24.	9.8	Critical
CVE-2018-7073	2018-08-06 18h00 +00:00	A local arbitrary file modification vulnerability was identified in HPE Moonshot Provisioning Manager prior to v1.24.	5.5	Medium

HP Moonshot Provisioning Manager 1.20

CPE Details

CPE Name: cpe:2.3:a:hp:moonshot_provisioning_manager:1.20:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:hp:moonshot_provisioning_manager:1.20:::::::*