Design/Logic Flaw

2023-10-0916:15:00

PRIOn knowledge base

www.prio-n.com

hpe

msa controller

remote exploit

http requests

version in210r004

5.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.1%

HPE MSA Controller prior to version IN210R004 could be remotely exploited to allow inconsistent interpretation of HTTP requests.

CPENameOperatorVersion
msa_1060_storage_firmwareeq< in210r4
msa_2060_storage_firmwareeq< in210r4
msa_2062_storage_firmwareeq< in210r4

Name	Operator	Version
msa_1060_storage_firmware	eq	< in210r4
msa_2060_storage_firmware	eq	< in210r4
msa_2062_storage_firmware	eq	< in210r4

References

support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbst04539en_us