CVE-2023-28084
Published Apr 25, 2023
Last updated 2 years ago
Overview
- Description
- HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens
- Source
- security-alert@hpe.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
Social media
- Hype score
- Not currently trending
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:a:hp:oneview:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBAAD7B8-CB8C-4F50-8A30-0B2CF5199B8F", "versionEndExcluding": "6.60.04" }, { "criteria": "cpe:2.3:a:hp:oneview:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CCD692B5-5224-4D65-B5F6-9B1B4EF5B227", "versionEndExcluding": "8.2", "versionStartIncluding": "7.0" }, { "criteria": "cpe:2.3:a:hpe:oneview_global_dashboard:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "458F8B2A-D560-4497-9DD0-1C654B28B991", "versionEndExcluding": "2.72" } ], "operator": "OR" } ] } ]