Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-HYP-WSV-YT3J5HSB
HistoryAug 19, 2020 - 4:00 p.m.

Cisco Hyperflex HX-Series Software Weak Storage Vulnerability

2020-08-1916:00:00
tools.cisco.com
7

0.0004 Low

EPSS

Percentile

5.1%

JSON

A vulnerability in the installation component of Cisco Hyperflex HX-Series Software could allow an authenticated, local attacker to retrieve the password that was configured at installation on an affected device.

The vulnerability exists because sensitive information is stored as clear text. An attacker could exploit this vulnerability by authenticating to an affected device and navigating to the directory that contains sensitive information. A successful exploit could allow the attacker to obtain sensitive information in clear text from the affected device.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-HYP-WSV-yT3j5hSB [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-HYP-WSV-yT3j5hSB”]

Affected configurations

Vulners
Node
ciscohyperflex_hx_data_platformMatchany
OR
ciscohyperflex_hx_data_platformMatchany

Related

prion 1
cvelist 1
cve 1
nessus 1
nvd 1
prion
prion
Design/Logic Flaw
2020-08-26 17:15:00
cvelist
cvelist
CVE-2020-3389 Cisco Hyperflex HX-Series Software Weak Storage Vulnerability
2020-08-19 00:00:00
cve
cve
CVE-2020-3389
2020-08-26 17:15:13
nessus
nessus
Cisco Hyperflex HX-Series Software Weak Storage (cisco-sa-HYP-WSV-yT3j5hSB)
2020-08-25 00:00:00
nvd
nvd
CVE-2020-3389
2020-08-26 17:15:13

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CISCO-SA-HYP-WSV-YT3J5HSB
prion1cvelist1cve1nessus1nvd1