CVE-2010-4115

Published Dec 17, 2010

Last updated 3 months ago

CVSS info 9.0

Overview

Description: HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011, TS100R025, TS100P002, TS200R005, TS201R014, and TS201R015 installs an undocumented admin account with a default "!admin" password, which allows remote attackers to gain privileges.
Source: hp-security-alert@hp.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 9
Impact score: 10
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-255

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:hp:storageworks_modular_smart_array_p2000_g3:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0654E285-3E7E-4DA3-A0AF-55B5EC4B4346"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hp:storageworks_modular_smart_array_p2000_g3_firmware:ts100p002:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EBF57B45-1C10-43D4-BB3A-CC6EF58E2B30"
          },
          {
            "criteria": "cpe:2.3:a:hp:storageworks_modular_smart_array_p2000_g3_firmware:ts100r011:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16294B03-4806-405F-8E50-5ECA9FD8F3B0"
          },
          {
            "criteria": "cpe:2.3:a:hp:storageworks_modular_smart_array_p2000_g3_firmware:ts100r025:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02838E38-3C7E-4B45-A717-9D1122E1F7BF"
          },
          {
            "criteria": "cpe:2.3:a:hp:storageworks_modular_smart_array_p2000_g3_firmware:ts200r005:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD1EE7ED-3E09-46F0-B02D-C5114A70E8DD"
          },
          {
            "criteria": "cpe:2.3:a:hp:storageworks_modular_smart_array_p2000_g3_firmware:ts201r014:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7BF2FC7D-1E82-44CE-90E7-FACDF7681AC4"
          },
          {
            "criteria": "cpe:2.3:a:hp:storageworks_modular_smart_array_p2000_g3_firmware:ts201r015:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF408D30-8F92-4ABA-8AB4-7A88ED2C0D6F"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References