Remote Information Disclosure in HPE IceWall Federation Agent
CVE-2017-8945

6.1MEDIUM

Key Information:

Vendor
HP
Status
Icewall Federation Agent
Vendor
CVE Published:
15 February 2018

Summary

A vulnerability exists in HPE IceWall Federation Agent version 3.0 that enables unauthorized remote users to disclose sensitive information. This exposure can lead to unauthorized access to data, potentially compromising the privacy and security of information handled by the application.

Affected Version(s)

IceWall Federation Agent v3.0

References

http://www.securityfocus.com/bid/98711
vdb-entryx_refsource_BID
https://support.hpe.com/hpsc/doc/public/display?docId=emr...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1038570
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.