Unrated severityNVD Advisory· Published Sep 27, 2018· Updated Aug 5, 2024

CVE-2018-7108

Description

HPE StorageWorks XP7 Automation Director (AutoDir) version 8.5.2-02 to earlier than 8.6.1-00 has a local and remote authentication bypass vulnerability that exposed the user authentication information of the storage system. This problem sometimes occurred under specific conditions when running a service template.

Affected products

HPE/StorageWorks XP7 Automation Directorllm-create
Range: >=8.5.2-02, <8.6.1-00
Hewlett Packard Enterprise/HPE StorageWorks XP7 Automation Director (AutoDir)v5
Range: version 8.5.2-02 to earlier than 8.6.1-00

Patches

Vulnerability mechanics

References

www.securitytracker.com/id/1041696mitrevdb-entryx_refsource_SECTRACK
support.hpe.com/hpsc/doc/public/displaymitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000