Local Access Control Bypass in HP Network Automation by HP
CVE-2014-2646

Currently unrated

Key Information:

Vendor: HP
Status: Network Automation
Vendor: CVE Published:; 10 October 2014

Summary

An unspecified vulnerability in HP Network Automation versions 9.10 and 9.20 permits local users to bypass intended access restrictions, potentially allowing unauthorized actions within the system. Attackers may exploit unknown vectors, which can lead to security breaches and impact the integrity of the network management functions. Organizations using these versions should take precautionary measures to secure their environments and apply relevant updates provided by the vendor.

References

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

Timeline

Vulnerability published
Oct 10, 2014
Vulnerability Reserved
Mar 24, 2014