Lucene search
HpeCVELIST:CVE-2023-30910HistoryOct 09, 2023 - 3:04 p.m.
CVE-2023-30910
2023-10-0915:04:35
CWE-444
hpe
www.cve.org
cve-2023-30910
remote exploitation
http requests
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
5.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
14.1%
HPE MSA Controller prior to versionΒ IN210R004 could be remotely exploited to allow inconsistent interpretation of HTTP requests.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "HPE MSA Controller",
"vendor": "Hewlett Packer Enterprise (HPE)",
"versions": [
{
"lessThan": "IN210R004",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2023-30910
2023-10-09 16:15:10
prion
prion
Design/Logic Flaw
2023-10-09 16:15:00
nvd
nvd
CVE-2023-30910
2023-10-09 16:15:10
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
5.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
14.1%
Related for CVELIST:CVE-2023-30910