Описание
Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a vulnerability in the remote firmware download feature that could allow a user to place or replace an arbitrary file on the remote host. In non-secure mode, the user is unauthenticated.
Ссылки
- Vendor Advisory
- Product
- Vendor Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия от 11.0.0 (включая) до 11.4.425.0 (исключая)Версия от 12.0.0 (включая) до 12.8.542.31 (исключая)
Одно из
cpe:2.3:a:broadcom:emulex_hba_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:emulex_hba_manager:*:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00469
Низкий
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
больше 3 лет назад
Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a vulnerability in the remote firmware download feature that could allow a user to place or replace an arbitrary file on the remote host. In non-secure mode, the user is unauthenticated.
EPSS
Процентиль: 64%
0.00469
Низкий
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
NVD-CWE-noinfo