CVE-2024-42504

🗓️ 03 Oct 2024 06:38:19Reported by hpeType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 45 Views

Security vulnerability in HPE IceWall Agent products causing Remote Cross-Site Request Forger

Reporter	Title	Published	Views	Family All 7
Circl	CVE-2024-42504	3 Oct 202409:55	–	circl
CNNVD	Hewlett Packard Enterprise IceWall Agent 安全漏洞	3 Oct 202400:00	–	cnnvd
Cvelist	CVE-2024-42504 HPE IceWall Agent products, Cross-Site Request Forgery (CSRF)	3 Oct 202406:38	–	cvelist
EUVD	EUVD-2024-39652	3 Oct 202520:07	–	euvd
NVD	CVE-2024-42504	3 Oct 202407:15	–	nvd
Positive Technologies	PT-2024-29994 · Hewlett Packard · Hpe Icewall Agent	2 Oct 202400:00	–	ptsecurity
Vulnrichment	CVE-2024-42504 HPE IceWall Agent products, Cross-Site Request Forgery (CSRF)	3 Oct 202406:38	–	vulnrichment

[
  {
    "defaultStatus": "affected",
    "platforms": [
      "Windows",
      "Linux",
      "HP-UX"
    ],
    "product": "HPE IceWall Agent products",
    "vendor": "Hewlett Packard Enterprise",
    "versions": [
      {
        "lessThan": "4.0",
        "status": "affected",
        "version": "IceWall Federation Agent",
        "versionType": "IceWall Federation Agent"
      },
      {
        "lessThan": "11",
        "status": "affected",
        "version": "IceWall Gen11 Enterprise Edition",
        "versionType": "IceWall Gen11 Enterprise Edition"
      },
      {
        "lessThan": "10",
        "status": "affected",
        "version": "IceWall SSO Agent Option",
        "versionType": "IceWall SSO Agent Option"
      }
    ]
  }
]

Source	Link
support	www.support.hpe.com/hpesc/public/docDisplay

15 Apr 2026 00:35Current

4.7Medium risk

Vulners AI Score4.7

CVSS 3.14.3

EPSS0.00086

SSVC

CWE-352