Privilege Escalation Vulnerability in HPE Products
CVE-2023-30906
7.5HIGH
Key Information:
- Vendor
- HP
- Vendor
- CVE Published:
- 18 July 2023
Summary
This vulnerability allows local attackers to execute arbitrary code with elevated privileges, potentially compromising the security of the affected HPE Software. Exploitation of this flaw could lead to unauthorized access and control over sensitive system functions.
Affected Version(s)
HPE Intelligent Provisioning (IP) for Gen9 v2.87 or later
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved