Insufficient Verification of Data Authenticity vulnerability in Hewlett Packard Enterprise HPE Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays.
References
Link | Resource |
---|---|
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst04359en_us | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
History
07 Nov 2023, 03:49
Type | Values Removed | Values Added |
---|---|---|
Summary | Insufficient Verification of Data Authenticity vulnerability in Hewlett Packard Enterprise HPE Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays. |
14 Dec 2022, 18:21
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:hpe:hf60c_firmware:5.3.0.0:*:*:*:-:*:*:* cpe:2.3:o:hpe:sf300_firmware:*:*:*:*:ltsr:*:*:* cpe:2.3:h:hpe:hf40c:-:*:*:*:*:*:*:* cpe:2.3:o:hpe:hf40_firmware:*:*:*:*:ltsr:*:*:* cpe:2.3:h:hpe:hf60c:-:*:*:*:*:*:*:* cpe:2.3:o:hpe:sf100_firmware:5.3.0.0:*:*:*:-:*:*:* cpe:2.3:o:hpe:hf40_firmware:5.3.0.0:*:*:*:-:*:*:* cpe:2.3:o:hpe:hf40c_firmware:5.3.0.0:*:*:*:-:*:*:* cpe:2.3:o:hpe:sf300_firmware:5.3.0.0:*:*:*:-:*:*:* cpe:2.3:h:hpe:hf20h:-:*:*:*:*:*:*:* cpe:2.3:o:hpe:hf20_firmware:5.3.0.0:*:*:*:-:*:*:* cpe:2.3:o:hpe:hf60c_firmware:*:*:*:*:ltsr:*:*:* cpe:2.3:h:hpe:hf40:-:*:*:*:*:*:*:* cpe:2.3:o:hpe:hf20_firmware:*:*:*:*:ltsr:*:*:* cpe:2.3:o:hpe:sf100_firmware:*:*:*:*:ltsr:*:*:* cpe:2.3:h:hpe:sf100:-:*:*:*:*:*:*:* cpe:2.3:h:hpe:sf300:-:*:*:*:*:*:*:* cpe:2.3:o:hpe:hf60_firmware:5.3.0.0:*:*:*:-:*:*:* cpe:2.3:h:hpe:hf20:-:*:*:*:*:*:*:* cpe:2.3:h:hpe:hf60:-:*:*:*:*:*:*:* cpe:2.3:h:hpe:hf20c:-:*:*:*:*:*:*:* cpe:2.3:o:hpe:hf40c_firmware:*:*:*:*:ltsr:*:*:* cpe:2.3:o:hpe:hf20h_firmware:5.3.0.0:*:*:*:-:*:*:* cpe:2.3:o:hpe:hf20c_firmware:5.3.0.0:*:*:*:-:*:*:* cpe:2.3:o:hpe:hf20c_firmware:*:*:*:*:ltsr:*:*:* cpe:2.3:o:hpe:hf60_firmware:*:*:*:*:ltsr:*:*:* cpe:2.3:o:hpe:hf20h_firmware:*:*:*:*:ltsr:*:*:* |
|
CWE | CWE-345 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
First Time |
Hpe
Hpe hf60c Hpe sf300 Firmware Hpe hf40 Firmware Hpe sf300 Hpe hf40 Hpe hf20h Hpe hf20c Firmware Hpe hf20c Hpe hf60 Firmware Hpe hf40c Hpe hf20 Firmware Hpe hf20h Firmware Hpe hf40c Firmware Hpe sf100 Firmware Hpe sf100 Hpe hf20 Hpe hf60c Firmware Hpe hf60 |
|
References | (MISC) https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst04359en_us - Vendor Advisory |
12 Dec 2022, 13:17
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-12 13:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-37928
Mitre link : CVE-2022-37928
CVE.ORG link : CVE-2022-37928
JSON object : View
Products Affected
hpe
- hf20
- hf40
- hf20_firmware
- hf40_firmware
- hf60_firmware
- hf20c_firmware
- sf300_firmware
- hf60c
- sf100
- hf20h_firmware
- sf300
- hf40c_firmware
- hf60
- sf100_firmware
- hf20h
- hf40c
- hf60c_firmware
- hf20c
CWE
CWE-345
Insufficient Verification of Data Authenticity