CVE-2022-37930

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2022-37930
A security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays and HPE Nimble Storage Secondary Flash Arrays which could potentially allow local disclosure of sensitive information.

5.5 /10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst04361en_us Vendor Advisory
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:hpe:sf100_firmware:5.3.0.0:*:*:*:-:*:*:*
cpe:2.3:o:hpe:sf100_firmware:*:*:*:*:ltsr:*:*:*
cpe:2.3:h:hpe:sf100:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:o:hpe:sf300_firmware:*:*:*:*:ltsr:*:*:*
cpe:2.3:o:hpe:sf300_firmware:5.3.0.0:*:*:*:-:*:*:*
cpe:2.3:h:hpe:sf300:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
OR cpe:2.3:o:hpe:hf60c_firmware:*:*:*:*:ltsr:*:*:*
cpe:2.3:o:hpe:hf60c_firmware:5.3.0.0:*:*:*:-:*:*:*
cpe:2.3:h:hpe:hf60c:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
OR cpe:2.3:o:hpe:hf40c_firmware:*:*:*:*:ltsr:*:*:*
cpe:2.3:o:hpe:hf40c_firmware:5.3.0.0:*:*:*:-:*:*:*
cpe:2.3:h:hpe:hf40c:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
OR cpe:2.3:o:hpe:hf20_firmware:*:*:*:*:ltsr:*:*:*
cpe:2.3:o:hpe:hf20_firmware:5.3.0.0:*:*:*:-:*:*:*
cpe:2.3:h:hpe:hf20:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
OR cpe:2.3:o:hpe:hf40_firmware:*:*:*:*:ltsr:*:*:*
cpe:2.3:o:hpe:hf40_firmware:5.3.0.0:*:*:*:-:*:*:*
cpe:2.3:h:hpe:hf40:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
OR cpe:2.3:o:hpe:hf60_firmware:*:*:*:*:ltsr:*:*:*
cpe:2.3:o:hpe:hf60_firmware:5.3.0.0:*:*:*:-:*:*:*
cpe:2.3:h:hpe:hf60:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
OR cpe:2.3:o:hpe:hf20h_firmware:*:*:*:*:ltsr:*:*:*
cpe:2.3:o:hpe:hf20h_firmware:5.3.0.0:*:*:*:-:*:*:*
cpe:2.3:h:hpe:hf20h:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
OR cpe:2.3:o:hpe:hf20c_firmware:*:*:*:*:ltsr:*:*:*
cpe:2.3:o:hpe:hf20c_firmware:5.3.0.0:*:*:*:-:*:*:*
cpe:2.3:h:hpe:hf20c:-:*:*:*:*:*:*:*
Information

Published : 2022-12-12 05:15

Updated : 2022-12-14 13:29

NVD link : CVE-2022-37930

Mitre link : CVE-2022-37930

JSON object : View

CWE
NVD-CWE-noinfo
Advertisement

dedicated server usa
Products Affected

hpe

  • hf60c_firmware
  • hf20
  • sf300
  • hf20_firmware
  • hf20h_firmware
  • hf20c
  • hf40_firmware
  • hf40c
  • hf40
  • sf100_firmware
  • hf20h
  • hf60_firmware
  • hf20c_firmware
  • hf60c
  • hf40c_firmware
  • sf300_firmware
  • hf60
  • sf100