Search Results | AttackerKB

Show filters

Topics 8 Users 9,712

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

8 Total Results

Displaying 1-8 of 8

Attacker Value

Unknown

CVE-2021-29214

Disclosure Date: December 10, 2021 (last updated October 07, 2023)

A security vulnerability has been identified in HPE StoreServ Management Console (SSMC). An authenticated SSMC administrator could exploit the vulnerability to inject code and elevate their privilege in SSMC. The scope of this vulnerability is limited to SSMC. Note: The arrays being managed are not impacted by this vulnerability. This vulnerability impacts SSMC versions 3.4 GA to 3.8.1.

Attack Vector: Network Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2020-7197

Disclosure Date: October 26, 2020 (last updated February 22, 2025)

SSMC3.7.0.0 is vulnerable to remote authentication bypass. HPE StoreServ Management Console (SSMC) 3.7.0.0 is an off node multiarray manager web application and remains isolated from data on the managed arrays. HPE has provided an update to HPE StoreServ Management Console (SSMC) software 3.7.0.0* Upgrade to HPE 3PAR StoreServ Management Console 3.7.1.1 or later.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2019-5405

Disclosure Date: August 09, 2019 (last updated November 27, 2024)

A remote authorization bypass vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1.

0

Attacker Value

Unknown

CVE-2019-5407

Disclosure Date: August 09, 2019 (last updated November 27, 2024)

A remote information disclosure vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1.

0

Attacker Value

Unknown

CVE-2019-5404

Disclosure Date: August 09, 2019 (last updated November 27, 2024)

A remote script injection vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1.

0

Attacker Value

Unknown

CVE-2019-5402

Disclosure Date: August 09, 2019 (last updated November 27, 2024)

A remote authorization bypass vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1.

0

Attacker Value

Unknown

CVE-2019-5403

Disclosure Date: August 09, 2019 (last updated November 27, 2024)

A remote multiple cross-site scripting vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1.

0

Attacker Value

Unknown

CVE-2019-5406

Disclosure Date: August 09, 2019 (last updated November 27, 2024)

A remote session reuse vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1.

0