Описание
The HTTP administration interface for HP Procurve 4000M Switch firmware before C.09.16, with stacking features and remote administration enabled, does not authenticate requests to reset the device, which allows remote attackers to cause a denial of service via a direct request to the device_reset CGI program.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до c.09.15 (включая)
cpe:2.3:h:hp:procurve_switch_4000m:*:*:*:*:*:*:*:*
EPSS
Процентиль: 90%
0.05933
Низкий
7.1 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
The HTTP administration interface for HP Procurve 4000M Switch firmware before C.09.16, with stacking features and remote administration enabled, does not authenticate requests to reset the device, which allows remote attackers to cause a denial of service via a direct request to the device_reset CGI program.
EPSS
Процентиль: 90%
0.05933
Низкий
7.1 High
CVSS2
Дефекты
NVD-CWE-Other