CVE-2017-8974
Severity Score
4.4
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A Local Authentication Restriction Bypass vulnerability in HPE NonStop Server version L-Series: T6533L01 through T6533L01^ADN; J-Series and H-series: T6533H02 through T6533H04^ADF and T6533H05 through T6533H05^ADL was found.
En la versión 1.0 de SAP HANA Extended Application Services, una contraseña keystore plana se escribe en un archivo de registro del sistema, lo que podría poner en peligro la confidencialidad de la comunicación SSL.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2017-05-15 CVE Reserved
- 2018-01-14 CVE Published
- 2023-03-08 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/102530 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbns03804en_us | 2019-10-03 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Hp Search vendor "Hp" | Nonstop Server Software Search vendor "Hp" for product "Nonstop Server Software" | >= t6533h02 <= t6533h04\^adf Search vendor "Hp" for product "Nonstop Server Software" and version " >= t6533h02 <= t6533h04\^adf" | - |
Affected
| in | Hp Search vendor "Hp" | Nonstop Server Search vendor "Hp" for product "Nonstop Server" | - | - |
Safe
|
| Hp Search vendor "Hp" | Nonstop Server Software Search vendor "Hp" for product "Nonstop Server Software" | >= t6533l01 <= t6533l01\^adn Search vendor "Hp" for product "Nonstop Server Software" and version " >= t6533l01 <= t6533l01\^adn" | - |
Affected
| in | Hp Search vendor "Hp" | Nonstop Server Search vendor "Hp" for product "Nonstop Server" | - | - |
Safe
|