HP-UX System Hit by Denial of Service Vulnerability
CVE-2024-42500

9.3CRITICAL

Key Information:

Vendor: HP (HP)
Status: HP HP-ux Oncplus
Vendor: CVE Published:; 9 September 2024

What is CVE-2024-42500?

A denial of service vulnerability has been identified within the HPE HP-UX System's Network File System (NFSv4) services, which could lead to network disruptions for users. This vulnerability may allow an attacker to exploit the affected services, causing critical functionalities to become unavailable. Organizations using the HP-UX system should prioritize implementing the recommended patches to mitigate potential risks associated with this issue.

Affected Version(s)

HPE HP-UX ONCplus B.11.31.24

References

https://support.hpe.com/hpesc/public/docDisplay?docId=hpe...

CVSS V3.1

Score:

9.3

Severity:

CRITICAL

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 9, 2024
Vulnerability Reserved
Aug 2, 2024

HP (HP)

What is CVE-2024-42500?

Affected Version(s)

References

CVSS V3.1

Timeline