CVE-2010-3008

2022-10-0316:20:54

[email protected]

web.nvd.nist.gov

data protector express

sse

windows

vulnerability

privilege escalation

denial of service

cve-2010-3008

nvd

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

Low

0.922 High

EPSS

Percentile

99.0%

JSON

Unspecified vulnerability in HP Data Protector Express, and Data Protector Express Single Server Edition (SSE), 3.x before build 56936 and 4.x before build 56906 on Windows allows local users to gain privileges or cause a denial of service via unknown vectors, a different vulnerability than CVE-2010-3007.

Affected configurations

NVD

Node

hpdata_protector_expressMatch3.1

hpdata_protector_expressMatch3.5sp1

hpdata_protector_expressMatch3.5sp2

hpdata_protector_expressMatch4.0

hpdata_protector_expressMatch4.0sp1

Node

hpdata_protector_expressMatch3.1single_server

hpdata_protector_expressMatch3.5sp1single_server

hpdata_protector_expressMatch3.5sp2single_server

hpdata_protector_expressMatch4.0single_server

hpdata_protector_expressMatch4.0sp1single_server

CPENameOperatorVersion
hp:data_protector_expresshp data protector expresseq3.1
hp:data_protector_expresshp data protector expresseq3.5
hp:data_protector_expresshp data protector expresseq4.0

CPE	Name	Operator	Version
hp:data_protector_express	hp data protector express	eq	3.1
hp:data_protector_express	hp data protector express	eq	3.5
hp:data_protector_express	hp data protector express	eq	4.0