CVE-2022-37933

Published at:
2023-01-05T07:15:09.997
Source: [email protected]

Global infos:

A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers. The vulnerability could be exploited to allow local unauthorized data injection. HPE has made the following software updates to resolve the vulnerability in HPE Superdome Flex firmware 3.60.50 and below and Superdome Flex 280 servers firmware 1.40.60 and below.

CVE Status: Modified

References:

  • [email protected]
  • af854a3a-2127-422b-91ae-364da2661108
    •

    Metrics:

    AttributeValue
    Attack ComplexityLOW
    Attack VectorLOCAL
    Availability ImpactLOW
    Base Score7.3
    Base SeverityHIGH
    Confidentiality ImpactLOW
    Integrity ImpactHIGH
    Privileges RequiredHIGH
    ScopeCHANGED
    User InteractionNONE
    Vector StringCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:L
    Exploitability Score1.5
    Impact Score5.3
    Source[email protected]
    TypeSecondary

    Links:

    Exploit-db
    Github

    Most recherched CVEs
    Popular Keywords