CVE-2022-23702

2022-04-1216:11:36

hpe

www.cve.org

hpe superdome flex

superdome flex 280

security vulnerability

firmware update

AI Score

6.8

Confidence

High

EPSS

Percentile

12.6%

JSON

A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 Servers. The vulnerability could be locally exploited to allow an user with Administrator access to escalate their privilege. The vulnerability is resolved in the latest firmware update. HPE Superdome Flex Server Version 3.50.58 or later, HPE Superdome Flex 280 Server Version 1.20.204 or later.

CNA Affected

[
  {
    "product": "HPE Superdome Flex Server; HPE Superdome Flex 280 Server",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Prior to 3.50.58"
      },
      {
        "status": "affected",
        "version": "Prior to 1.20.204"
      }
    ]
  }
]

References

support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04266en_us