Описание
A potential security vulnerability has been identified in HPE Device Entitlement Gateway (DEG) v3.2.4, v3.3 and v3.3.1. The vulnerability could be remotely exploited to allow local SQL injection and elevation of privilege.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:hpe:device_entitlement_gateway:3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:hpe:device_entitlement_gateway:3.3:*:*:*:*:*:*:*
cpe:2.3:a:hpe:device_entitlement_gateway:3.3.1:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00298
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
A potential security vulnerability has been identified in HPE Device Entitlement Gateway (DEG) v3.2.4, v3.3 and v3.3.1. The vulnerability could be remotely exploited to allow local SQL injection and elevation of privilege.
EPSS
Процентиль: 53%
0.00298
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-89