CVE-2015-5443

2015-10-1210:59:05

CWE-200

[email protected]

web.nvd.nist.gov

cve-2015-5443

hp 3par

service processor

sensitive information

remote authentication

nvd

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

5.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

44.5%

JSON

HP 3PAR Service Processor SP 4.2.0.GA-29 (GA) SPOCC, SP 4.3.0.GA-17 (GA) SPOCC, and SP 4.3.0-GA-24 (MU1) SPOCC allows remote authenticated users to obtain sensitive information via unspecified vectors.

Affected configurations

NVD

Node

hp3par_service_processor_spMatch4.2.0.ga-29_\(ga\)_spocc

hp3par_service_processor_spMatch4.3.0.ga-17_\(ga\)_spocc

hp3par_service_processor_spMatch4.3.0.ga-24_\(mu1\)_spocc

CPENameOperatorVersion
hp:3par_service_processor_sphp 3par service processor speq4.2.0.ga-29_\(ga\)_spocc
hp:3par_service_processor_sphp 3par service processor speq4.3.0.ga-17_\(ga\)_spocc
hp:3par_service_processor_sphp 3par service processor speq4.3.0.ga-24_\(mu1\)_spocc

CPE	Name	Operator	Version
hp:3par_service_processor_sp	hp 3par service processor sp	eq	4.2.0.ga-29_\(ga\)_spocc
hp:3par_service_processor_sp	hp 3par service processor sp	eq	4.3.0.ga-17_\(ga\)_spocc
hp:3par_service_processor_sp	hp 3par service processor sp	eq	4.3.0.ga-24_\(mu1\)_spocc