Lucene search

HpeCVE-2017-5786

HistoryFeb 15, 2018 - 10:29 p.m.

CVE-2017-5786

2018-02-1522:29:05

hpe

web.nvd.nist.gov

cve-2017-5786

nvd

hpe officeconnect

network switches

data modification

unauthorized

pt.02.01

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

AI Score

5.4

Confidence

High

EPSS

Percentile

12.6%

JSON

A local Unauthorized Data Modification vulnerability in HPE OfficeConnect Network Switches version PT.02.01 including PT.01.03 through PT.01.14

Affected configurations

Nvd

Node

hpofficeconnect_1820_8g_switch_j9979a_firmwareRangept.01.03–pt.01.14

hpofficeconnect_1820_8g_switch_j9979a_firmwareMatchpt.02.01

AND

hpofficeconnect_1820_8g_switch_j9979aMatch-

Node

hpofficeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a_firmwareRangept.01.03–pt.01.14

hpofficeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a_firmwareMatchpt.02.01

AND

hpofficeconnect_1820_24g_poe\+_\(185w\)_switch_j9983aMatch-

Node

hpofficeconnect_1820_24g_switch_j9980a_firmwareRangept.01.03–pt.01.14

hpofficeconnect_1820_24g_switch_j9980a_firmwareMatchpt.02.01

AND

hpofficeconnect_1820_24g_switch_j9980aMatch-

Node

hpofficeconnect_1820_48g_poe\+_\(370w\)_switch_j9984a_firmwareRangept.01.03–pt.01.14

hpofficeconnect_1820_48g_poe\+_\(370w\)_switch_j9984a_firmwareMatchpt.02.01

AND

hpofficeconnect_1820_48g_poe\+_\(370w\)_switch_j9984aMatch-

Node

hpofficeconnect_1820_48g_switch_j9981a_firmwareRangept.01.03–pt.01.14

hpofficeconnect_1820_48g_switch_j9981a_firmwareMatchpt.02.01

AND

hpofficeconnect_1820_48g_switch_j9981aMatch-

Node

hpofficeconnect_1820_8g_poe\+_\(65w\)_switch_j9982a_firmwareRangept.01.03–pt.01.14

hpofficeconnect_1820_8g_poe\+_\(65w\)_switch_j9982a_firmwareMatchpt.02.01

AND

hpofficeconnect_1820_8g_poe\+_\(65w\)_switch_j9982aMatch-

VendorProductVersionCPE
hpofficeconnect_1820_8g_switch_j9979a_firmware*cpe:2.3:o:hp:officeconnect_1820_8g_switch_j9979a_firmware:*:*:*:*:*:*:*:*
hpofficeconnect_1820_8g_switch_j9979a_firmwarept.02.01cpe:2.3:o:hp:officeconnect_1820_8g_switch_j9979a_firmware:pt.02.01:*:*:*:*:*:*:*
hpofficeconnect_1820_8g_switch_j9979a-cpe:2.3:h:hp:officeconnect_1820_8g_switch_j9979a:-:*:*:*:*:*:*:*
hpofficeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a_firmware*cpe:2.3:o:hp:officeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a_firmware:*:*:*:*:*:*:*:*
hpofficeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a_firmwarept.02.01cpe:2.3:o:hp:officeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a_firmware:pt.02.01:*:*:*:*:*:*:*
hpofficeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a-cpe:2.3:h:hp:officeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a:-:*:*:*:*:*:*:*
hpofficeconnect_1820_24g_switch_j9980a_firmware*cpe:2.3:o:hp:officeconnect_1820_24g_switch_j9980a_firmware:*:*:*:*:*:*:*:*
hpofficeconnect_1820_24g_switch_j9980a_firmwarept.02.01cpe:2.3:o:hp:officeconnect_1820_24g_switch_j9980a_firmware:pt.02.01:*:*:*:*:*:*:*
hpofficeconnect_1820_24g_switch_j9980a-cpe:2.3:h:hp:officeconnect_1820_24g_switch_j9980a:-:*:*:*:*:*:*:*
hpofficeconnect_1820_48g_poe\+_\(370w\)_switch_j9984a_firmware*cpe:2.3:o:hp:officeconnect_1820_48g_poe\+_\(370w\)_switch_j9984a_firmware:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hp	officeconnect_1820_8g_switch_j9979a_firmware	*	cpe:2.3:o:hp:officeconnect_1820_8g_switch_j9979a_firmware::::::::
hp	officeconnect_1820_8g_switch_j9979a_firmware	pt.02.01	cpe:2.3:o:hp:officeconnect_1820_8g_switch_j9979a_firmware:pt.02.01:::::::*
hp	officeconnect_1820_8g_switch_j9979a	-	cpe:2.3:h:hp:officeconnect_1820_8g_switch_j9979a:-:::::::*
hp	officeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a_firmware	*	cpe:2.3:o:hp:officeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a_firmware::::::::
hp	officeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a_firmware	pt.02.01	cpe:2.3:o:hp:officeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a_firmware:pt.02.01:::::::*
hp	officeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a	-	cpe:2.3:h:hp:officeconnect_1820_24g_poe\+_\(185w\)_switch_j9983a:-:::::::*
hp	officeconnect_1820_24g_switch_j9980a_firmware	*	cpe:2.3:o:hp:officeconnect_1820_24g_switch_j9980a_firmware::::::::
hp	officeconnect_1820_24g_switch_j9980a_firmware	pt.02.01	cpe:2.3:o:hp:officeconnect_1820_24g_switch_j9980a_firmware:pt.02.01:::::::*
hp	officeconnect_1820_24g_switch_j9980a	-	cpe:2.3:h:hp:officeconnect_1820_24g_switch_j9980a:-:::::::*
hp	officeconnect_1820_48g_poe\+_\(370w\)_switch_j9984a_firmware	*	cpe:2.3:o:hp:officeconnect_1820_48g_poe\+_\(370w\)_switch_j9984a_firmware::::::::

Rows per page:

1-10 of 181

CNA Affected

[
  {
    "product": "OfficeConnect Network Switches",
    "vendor": "Hewlett Packard Enterprise",
    "versions": [
      {
        "status": "affected",
        "version": "PT.02.01 including: PT.01.03 through PT.01.14"
      }
    ]
  }
]

References

www.securityfocus.com/bid/96149

support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05388948

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

AI Score

5.4

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for CVE-2017-5786