CVE-2022-37929 - OpenCVE

Improper Privilege Management vulnerability in Hewlett Packard Enterprise Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Hpe	Sf100 Hf20 Firmware Hf60c Sf300 Hf40c Firmware Hf20h Hf20c Hf20h Firmware Hf60 Hf20c Firmware Hf40 Firmware Hf60c Firmware Hf40 Sf100 Firmware Hf60 Firmware Sf300 Firmware Hf40c Hf20

Configuration 1 [-]

AND

OR	cpe:2.3:o:hpe:sf100_firmware:::::ltsr:::*
	cpe:2.3:o:hpe:sf100_firmware:5.3.0.0::::-:::

cpe:2.3:h:hpe:sf100:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

OR	cpe:2.3:o:hpe:sf300_firmware:::::ltsr:::*
	cpe:2.3:o:hpe:sf300_firmware:5.3.0.0::::-:::

cpe:2.3:h:hpe:sf300:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

OR	cpe:2.3:o:hpe:hf60c_firmware:::::ltsr:::*
	cpe:2.3:o:hpe:hf60c_firmware:5.3.0.0::::-:::

cpe:2.3:h:hpe:hf60c:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

OR	cpe:2.3:o:hpe:hf40c_firmware:::::ltsr:::*
	cpe:2.3:o:hpe:hf40c_firmware:5.3.0.0::::-:::

cpe:2.3:h:hpe:hf40c:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

OR	cpe:2.3:o:hpe:hf20_firmware:::::ltsr:::*
	cpe:2.3:o:hpe:hf20_firmware:5.3.0.0::::-:::

cpe:2.3:h:hpe:hf20:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

OR	cpe:2.3:o:hpe:hf40_firmware:::::ltsr:::*
	cpe:2.3:o:hpe:hf40_firmware:5.3.0.0::::-:::

cpe:2.3:h:hpe:hf40:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

OR	cpe:2.3:o:hpe:hf60_firmware:::::ltsr:::*
	cpe:2.3:o:hpe:hf60_firmware:5.3.0.0::::-:::

cpe:2.3:h:hpe:hf60:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

OR	cpe:2.3:o:hpe:hf20h_firmware:::::ltsr:::*
	cpe:2.3:o:hpe:hf20h_firmware:5.3.0.0::::-:::

cpe:2.3:h:hpe:hf20h:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

OR	cpe:2.3:o:hpe:hf20c_firmware:::::ltsr:::*
	cpe:2.3:o:hpe:hf20c_firmware:5.3.0.0::::-:::

cpe:2.3:h:hpe:hf20c:-:*:*:*:*:*:*:*

References

Link	Resource
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst04360en_us	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: hpe

Published: 2022-11-03T15:37:25.244Z

Updated: 2022-12-12T12:11:04.548862Z

Reserved: 2022-08-08T18:49:44.386Z

Link: CVE-2022-37929

JSON object: View

NVD Information

Status : Modified

Published: 2022-12-12T13:15:14.233

Modified: 2023-11-07T03:49:56.437

Link: CVE-2022-37929

JSON object: View

Redhat Information

No data.

CWE

CWE-269