CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
96.5%
A Remote Code Execution vulnerability in HPE Network Automation using RPCServlet and Java Deserialization version v9.1x, v9.2x, v10.00, v10.00.01, v10.00.02, v10.10, v10.11, v10.11.01, v10.20 was found.
Vendor | Product | Version | CPE |
---|---|---|---|
hp | network_automation | 9.10 | cpe:2.3:a:hp:network_automation:9.10:*:*:*:*:*:*:* |
hp | network_automation | 9.20 | cpe:2.3:a:hp:network_automation:9.20:*:*:*:*:*:*:* |
hp | network_automation | 9.22 | cpe:2.3:a:hp:network_automation:9.22:*:*:*:*:*:*:* |
hp | network_automation | 9.22.01 | cpe:2.3:a:hp:network_automation:9.22.01:*:*:*:*:*:*:* |
hp | network_automation | 9.22.02 | cpe:2.3:a:hp:network_automation:9.22.02:*:*:*:*:*:*:* |
hp | network_automation | 10.00 | cpe:2.3:a:hp:network_automation:10.00:*:*:*:*:*:*:* |
hp | network_automation | 10.00.01 | cpe:2.3:a:hp:network_automation:10.00.01:*:*:*:*:*:*:* |
hp | network_automation | 10.00.02 | cpe:2.3:a:hp:network_automation:10.00.02:*:*:*:*:*:*:* |
hp | network_automation | 10.10 | cpe:2.3:a:hp:network_automation:10.10:*:*:*:*:*:*:* |
hp | network_automation | 10.11 | cpe:2.3:a:hp:network_automation:10.11:*:*:*:*:*:*:* |
[
{
"product": "Network Automation",
"vendor": "Hewlett Packard Enterprise",
"versions": [
{
"status": "affected",
"version": "v9.1x, v9.2x, v10.00, v10.00.01, v10.00.02, v10.10, v10.11, v10.11.01, v10.20"
}
]
}
]
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
96.5%