CVE-2023-28084
published 2023-04-25CVE-2023-28084: HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens
PriorityP423medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
EPSS
0.19%
8.6th percentile
HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hewlett_packard_enterprise | hpe_oneview | < 6.60.04 | 6.60.04 |
| hewlett_packard_enterprise | hpe_oneview | <= 8.2 | — |
| hewlett_packard_enterprise | hpe_oneview_global_dashboard | < 2.72 | 2.72 |
| hp | oneview | < 6.60.04 | 6.60.04 |
| hp | oneview | >= 7.0 < 8.2 | 8.2 |
| hpe | oneview_global_dashboard | < 2.72 | 2.72 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbgn04468en_ushttps://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbgn04469en_ushttps://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbgn04468en_ushttps://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbgn04469en_us
2023-04-25
Published