Sensitive Information Disclosure in HPE SiteScope Affects Multiple Versions
CVE-2017-8950
5.5MEDIUM
Summary
A vulnerability in HPE SiteScope versions 11.2x and 11.3x allows unauthorized disclosure of sensitive information, potentially exposing critical data to unauthorized individuals. This information leakage could facilitate further attacks and breach user confidentiality, making it imperative for affected users to apply patches or mitigations as recommended by HPE.
Affected Version(s)
SiteScope v11.2x, v11.3x
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved