Local Denial of Service Vulnerability in HP-UX with IPv6 Configuration
CVE-2023-30903

5.5MEDIUM

Key Information:

Vendor: HP
Status: HP-ux
Vendor: CVE Published:; 16 June 2023

Summary

HP-UX systems can be exploited locally to cause a Denial of Service when any physical interface on the system is configured with IPv6/inet6. This vulnerability allows an attacker with local access to manipulate network traffic or resources, potentially disrupting service availability. It is crucial for system administrators to review configurations and implement necessary measures to mitigate the risk.

Affected Version(s)

HP-UX HP-UX 11 prior to PHNE_44929

References

https://support.hpe.com/hpesc/public/docDisplay?docLocale...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 16, 2023
Vulnerability Reserved
Apr 20, 2023