FTP Credential Exposure in HPE OneView for c7000 Interconnect Modules
CVE-2023-28089
7.1HIGH
What is CVE-2023-28089?
A vulnerability in HPE OneView may allow unauthorized exposure of FTP credentials stored in appliance dumps for c7000 Interconnect Modules. This could potentially enable malicious actors to gain unauthorized access, increasing the risk of data breaches. It’s crucial for users of HPE OneView to review their security practices and ensure that appliance dumps are handled securely to mitigate this risk.
Affected Version(s)
HPE OneView 0 < 8.2
HPE OneView 0 < 6.60.04 LTS