Authentication flaw

2022-12-1213:15:00

PRIOn knowledge base

www.prio-n.com

vulnerability

remote exploit

authentication bypass

software update

security patch

hpe officeconnect

nvd

9.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.8%

JSON

A potential security vulnerability has been identified in Hewlett Packard Enterprise OfficeConnect 1820, 1850, and 1920S Network switches. The vulnerability could be remotely exploited to allow authentication bypass. HPE has made the following software updates to resolve the vulnerability in Hewlett Packard Enterprise OfficeConnect 1820, 1850 and 1920S Network switches versions: Prior to PT.02.14; Prior to PC.01.22; Prior to PO.01.21; Prior to PD.02.22;

CPENameOperatorVersion
officeconnect_1820_j9979a_firmwareeq< pt.2.14
officeconnect_1820_j9980a_firmwareeq< pt.2.14
officeconnect_1820_j9981a_firmwareeq< pt.2.14
officeconnect_1820_j9982a_firmwareeq< pt.2.14
officeconnect_1820_j9983a_firmwareeq< pt.2.14
officeconnect_1820_j9984a_firmwareeq< pt.2.14
officeconnect_1850_24g_2xgt_firmwareeq< pc.1.22
officeconnect_1850_24g_2xgt_poe\\+_firmwareeq< pc.1.22
officeconnect_1850_2xgt\\/spf\\+_firmwareeq< po.1.21
officeconnect_1850_48g_4xgt_firmwareeq< pc.1.22

Name	Operator	Version
officeconnect_1820_j9979a_firmware	eq	< pt.2.14
officeconnect_1820_j9980a_firmware	eq	< pt.2.14
officeconnect_1820_j9981a_firmware	eq	< pt.2.14
officeconnect_1820_j9982a_firmware	eq	< pt.2.14
officeconnect_1820_j9983a_firmware	eq	< pt.2.14
officeconnect_1820_j9984a_firmware	eq	< pt.2.14
officeconnect_1850_24g_2xgt_firmware	eq	< pc.1.22
officeconnect_1850_24g_2xgt_poe\\+_firmware	eq	< pc.1.22
officeconnect_1850_2xgt\\/spf\\+_firmware	eq	< po.1.21
officeconnect_1850_48g_4xgt_firmware	eq	< pc.1.22