Remote Clickjacking Vulnerability in HPE Matrix Operating Environment
CVE-2017-5780

6.5MEDIUM

Key Information:

Vendor: HP
Status: Matrix Operating Environment
Vendor: CVE Published:; 15 February 2018

Summary

A remote clickjacking vulnerability was identified in HPE Matrix Operating Environment version v7.6, which could allow an attacker to trick users into interacting with a malicious interface. This security flaw may expose sensitive data or lead to unauthorized actions on behalf of users, thereby compromising the integrity of the affected systems.

Affected Version(s)

Matrix Operating Environment v7.6

References

https://support.hpe.com/hpsc/doc/public/display?docId=emr...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 15, 2018
Vulnerability Reserved
Feb 1, 2017