Lucene search

HpeVULNRICHMENT:CVE-2024-22438

HistoryApr 15, 2024 - 9:37 a.m.

CVE-2024-22438 HPE OfficeConnect 1820 Network switches, Cross-Site Request Forgery (CSRF)

2024-04-1509:37:46

CWE-352

hpe

github.com

hpe officeconnect 1820

network switches

security vulnerability

remote exploit

malicious code

csrf

3.5 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L

7 High

AI Score

Confidence

Low

JSON

A potential security vulnerability has been identified in Hewlett Packard Enterprise OfficeConnect 1820 Network switches. The vulnerability could be remotely exploited to allow execution of malicious code.

CNA Affected

[
  {
    "vendor": "Hewlett Packard Enterprise",
    "product": "HPE OfficeConnect 1820 Network switches",
    "versions": [
      {
        "status": "affected",
        "version": "N/A",
        "lessThan": "PT.02.19",
        "versionType": "custom"
      }
    ],
    "platforms": [
      "Custom"
    ],
    "defaultStatus": "affected"
  }
]

References

support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbnw04628en_us