CVE-2023-28084

🗓️ 25 Apr 2023 19:00:14Reported by hpeType

HPE OneView & HPE Global Dashboard appliance expose auth token

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2023-28084	26 Apr 202300:25	–	circl
CNNVD	HPE OneView和HPE OneView Global Dashboard 安全漏洞	25 Apr 202300:00	–	cnnvd
Cvelist	CVE-2023-28084 HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens	25 Apr 202319:00	–	cvelist
EUVD	EUVD-2023-31809	3 Oct 202520:07	–	euvd
NVD	CVE-2023-28084	25 Apr 202320:15	–	nvd
OSV	CVE-2023-28084	25 Apr 202320:15	–	osv
Prion	Authentication flaw	25 Apr 202320:15	–	prion
Positive Technologies	PT-2023-21543 · Hewlett Packard · Hpe Oneview +1	25 Apr 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-28084	23 May 202503:34	–	redhatcve
Vulnrichment	CVE-2023-28084 HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens	25 Apr 202319:00	–	vulnrichment

NVD

Node

hp oneviewRange<6.60.04

hp oneviewRange7.0–8.2

hpe oneview_global_dashboardRange<2.72

[
  {
    "defaultStatus": "unaffected",
    "product": "HPE OneView",
    "vendor": "Hewlett Packard Enterprise",
    "versions": [
      {
        "lessThanOrEqual": "8.2",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "6.60.04",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "HPE OneView Global Dashboard",
    "vendor": "Hewlett Packard Enterprise",
    "versions": [
      {
        "lessThan": "2.72",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
support	www.support.hpe.com/hpesc/public/docDisplay
support	www.support.hpe.com/hpesc/public/docDisplay

03 Feb 2025 17:15Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.15.5

EPSS0.00028

SSVC

CWE-522