CVE-2023-28088

CWE-522Insufficiently Protected Credentials3 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 67.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Hewlett Packard Enterprise (hpe) HPE OneviewHP Oneview
Timeline
PublishedApr 25

Description

An HPE OneView appliance dump may expose SAN switch administrative credentials

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDhp/oneview< 6.60.04+1

🔴Vulnerability Details

2
GHSA
GHSA-2m28-wgxj-v265: An HPE OneView appliance dump may expose SAN switch administrative credentials2023-04-25
CVEList
CVE-2023-28088: An HPE OneView appliance dump may expose SAN switch administrative credentials2023-04-25
CVE-2023-28088 (HIGH CVSS 7.8) | An HPE OneView appliance dump may e | cvebase.io