Lucene search

[email protected]CVE-2024-22438

HistoryApr 15, 2024 - 10:15 a.m.

CVE-2024-22438

2024-04-1510:15:08

CWE-352

[email protected]

web.nvd.nist.gov

hewlett packard enterprise

security vulnerability

remote exploitation

malicious code

network switch

3.5 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

JSON

A potential security vulnerability has been identified in Hewlett Packard Enterprise OfficeConnect 1820 Network switches. The vulnerability could be remotely exploited to allow execution of malicious code.

CNA Affected

[
  {
    "defaultStatus": "affected",
    "platforms": [
      "Custom"
    ],
    "product": "HPE OfficeConnect 1820 Network switches",
    "vendor": "Hewlett Packard Enterprise",
    "versions": [
      {
        "lessThan": "PT.02.19",
        "status": "affected",
        "version": "N/A",
        "versionType": "custom"
      }
    ]
  }
]

References

support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbnw04628en_us