Remote Access Vulnerability in HPE Network Function Virtualization Director
CVE-2018-7071

4.3MEDIUM

Key Information:

Vendor
HP
Status
HP Network Function Virtualization Director (nfvd)
Vendor
CVE Published:
6 August 2018

Summary

Hewlett Packard Enterprise has identified a vulnerability in Network Function Virtualization Director (NFVD) version 4.2.1 that allows unauthorized remote access, potentially compromising sensitive information. This vulnerability can be exploited if appropriate security patches are not applied. Users of this software are advised to implement the necessary updates to secure their systems.

Affected Version(s)

HPE Network Function Virtualization Director (NFVD) NFVD 4.2.1 prior to gui patch 3

References

https://support.hpe.com/hpsc/doc/public/display?docLocale...
x_refsource_CONFIRM

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.