Privilege Escalation Vulnerability in HPE Products
CVE-2023-30906

7.5HIGH

Key Information:

Vendor
HP
Vendor
CVE Published:
18 July 2023

Summary

This vulnerability allows local attackers to execute arbitrary code with elevated privileges, potentially compromising the security of the affected HPE Software. Exploitation of this flaw could lead to unauthorized access and control over sensitive system functions.

Affected Version(s)

HPE Intelligent Provisioning (IP) for Gen9 v2.87 or later

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.