CVE-2018-7110

Name of the Vulnerable Software and Affected Versions HPE Service Governance Framework (SGF) versions 4.2, 4.3

Description A remote unauthorized disclosure of information issue was identified, related to a race condition under high load. This condition exists where the SGF transfers different parameters to the enabler.

Recommendations For HPE Service Governance Framework (SGF) version 4.2, update to a version that fixes the race condition issue. For HPE Service Governance Framework (SGF) version 4.3, update to a version that fixes the race condition issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.