CVE-2023-31426 — Vulnetix

CVE-2023-31426 PUBLISHED CVSS 8.699999809265137 HIGH

In HPE Fabric OS für HPE Fibre Channel und SAN Switches existieren mehrere Schwachstellen. Diese werden nicht einzeln im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, Informationen offenzulegen, oder einen Denial of Service Zustand herbeizuführen.

EPSS 0.21% · 43.8th percentile

Risk Scores

CVSS 4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.21%

43.8th percentile

Affected Products

Vendor	Product	Versions
HPE	HPE Switch SAN
HPE	HPE Switch Fibre Channel

Exploit Intelligence

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/22377 (circl)
https://security.netapp.com/advisory/ntap-20230908-0007/ (circl)

Timeline

Aug 1, 2023 CVE Published
Aug 2, 2023 EPSS Score
Sep 5, 2023 EPSS Score
Oct 9, 2023 EPSS Score
Nov 12, 2023 EPSS Score
Dec 15, 2023 EPSS Score
Jan 18, 2024 EPSS Score
Feb 21, 2024 EPSS Score
Mar 26, 2024 EPSS Score
Apr 29, 2024 EPSS Score
Jun 2, 2024 EPSS Score
Jul 6, 2024 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1969.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1969 advisory
https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbst04494en_us advisory

Open in Interactive Console →