Information disclosure

2021-10-1117:15:00

PRIOn knowledge base

www.prio-n.com

9.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.1%

JSON

A potential security vulnerability has been identified in HPE 3PAR StoreServ, HPE Primera Storage and HPE Alletra 9000 Storage array firmware. An unauthenticated user could remotely exploit the low complexity issue to execute code as administrator. This vulnerability impacts completely the confidentiality, integrity, availability of the array. HPE has made the following software updates and mitigation information to resolve the vulnerability in 3PAR, Primera and Alletra 9000 firmware.

CPENameOperatorVersion
3par_oseq3.3.1-mp5-p156
3par_oseq3.3.1-mu1
3par_oseq3.3.1-mu2-p157
3par_oseq3.3.2-ga-p-01
alletra_9060_firmwarege9.3.0
alletra_9060_firmwarele9.4.0
alletra_9080_firmwarege9.3.0
alletra_9080_firmwarele9.4.0
primera_630_firmwarege4.0.0
primera_630_firmwarele4.3.3

Name	Operator	Version
3par_os	eq	3.3.1-mp5-p156
3par_os	eq	3.3.1-mu1
3par_os	eq	3.3.1-mu2-p157
3par_os	eq	3.3.2-ga-p-01
alletra_9060_firmware	ge	9.3.0
alletra_9060_firmware	le	9.4.0
alletra_9080_firmware	ge	9.3.0
alletra_9080_firmware	le	9.4.0
primera_630_firmware	ge	4.0.0
primera_630_firmware	le	4.3.3