Remote Access Vulnerability in HPE Network Function Virtualization Director
CVE-2018-7071

4.3MEDIUM

Key Information:

Vendor: HP
Status: HP Network Function Virtualization Director (nfvd)
Vendor: CVE Published:; 6 August 2018

What is CVE-2018-7071?

Hewlett Packard Enterprise has identified a vulnerability in Network Function Virtualization Director (NFVD) version 4.2.1 that allows unauthorized remote access, potentially compromising sensitive information. This vulnerability can be exploited if appropriate security patches are not applied. Users of this software are advised to implement the necessary updates to secure their systems.

Affected Version(s)

HPE Network Function Virtualization Director (NFVD) NFVD 4.2.1 prior to gui patch 3

References

https://support.hpe.com/hpsc/doc/public/display?docLocale...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 6, 2018
Vulnerability Reserved
Feb 15, 2018