Lucene search

HpeCVE-2024-22435

HistoryApr 15, 2024 - 9:15 a.m.

CVE-2024-22435

2024-04-1509:15:07

CWE-200

hpe

web.nvd.nist.gov

web viewpoint

enterprise software

security vulnerability

unauthorized access

nonstop system

CVSS3

8.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

AI Score

6.7

Confidence

Low

EPSS

Percentile

9.0%

JSON

A potential security vulnerability has been identified in Web ViewPoint Enterprise software. This vulnerability could be exploited to allow unauthorized users to access some resources on a NonStop system.

CNA Affected

[
  {
    "defaultStatus": "affected",
    "platforms": [
      "HPE NonStop"
    ],
    "product": "HPE NonStop Web ViewPoint Enterprise software",
    "vendor": "Hewlett Packard Enterprise",
    "versions": [
      {
        "lessThan": "T0986L01^AAZ ",
        "status": "affected",
        "version": "See security bulletin HPESBNS04624",
        "versionType": "T0986L01^AAZ"
      },
      {
        "lessThan": "T0986H01^AAY ",
        "status": "affected",
        "version": "See security bulletin HPESBNS04624",
        "versionType": "T0986H01^AAY "
      }
    ]
  }
]

References

support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbns04624en_us

CVSS3

8.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

AI Score

6.7

Confidence

Low

EPSS

Percentile

9.0%

JSON

Related for CVE-2024-22435