CVE-2015-5433

HP Virtual Connect Enterprise Manager (VCEM) SDK before 7.5.0, as used in HP Matrix Operating Environment before 7.5.0 and other products, allows remote authenticated users to obtain sensitive information via unspecified vectors.

CVSS v2.0 4.0 MEDIUM

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04774019	Vendor Advisory
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04774021	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:hp:virtual_connect_enterprise_manager_sdk:*:*:*:*:*:*:*:*

cpe:2.3:a:hp:matrix_operating_environment:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2015-08-27 02:59

Updated : 2023-12-10 11:46

NVD link : CVE-2015-5433

Mitre link : CVE-2015-5433

CVE.ORG link : CVE-2015-5433

JSON object : View

Products Affected

hp

virtual_connect_enterprise_manager_sdk
matrix_operating_environment

CWE

NVD-CWE-noinfo

{"id": "CVE-2015-5433", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": true, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-08-27T02:59:14.047", "references": [{"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04774019", "tags": ["Vendor Advisory"], "source": "hp-security-alert@hp.com"}, {"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04774021", "tags": ["Vendor Advisory"], "source": "hp-security-alert@hp.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "HP Virtual Connect Enterprise Manager (VCEM) SDK before 7.5.0, as used in HP Matrix Operating Environment before 7.5.0 and other products, allows remote authenticated users to obtain sensitive information via unspecified vectors."}, {"lang": "es", "value": "Vulnerabilidad en HP Virtual Connect Enterprise Manager (VCEM) SDK en versiones anteriores a 7.5.0, tal como se utiliza en HP Matrix Operating Environment en versiones anteriores a 7.5.0 y otros productos, permite a usuarios remotos autenticados obtener informaci\u00f3n sensible a trav\u00e9s de vectores no especificados."}], "lastModified": "2015-08-27T13:54:25.690", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hp:virtual_connect_enterprise_manager_sdk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "776AF1F6-5D7C-4B64-8F75-D35901168D7A", "versionEndIncluding": "7.4.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hp:matrix_operating_environment:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "15F63F88-F511-4462-8625-800C5FF1E788", "versionEndIncluding": "7.4"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "hp-security-alert@hp.com"}