PT-2018-17913 · Hewlett Packard · Hpe Uiot
Published
2018-10-17
·
Updated
2019-10-03
·
CVE-2018-7111
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
HPE UIoT versions 1.2.4.2, 1.4.0, 1.4.1, 1.4.2, 1.5
Description
A remote unauthorized access issue was identified, allowing information to be changed by other users due to a malfunction in a section of the DSM portal and some DSM APIs.
Recommendations
For HPE UIoT version 1.2.4.2, update to a version that addresses the malfunction in the DSM portal and DSM APIs.
For HPE UIoT version 1.4.0, update to a version that addresses the malfunction in the DSM portal and DSM APIs.
For HPE UIoT version 1.4.1, update to a version that addresses the malfunction in the DSM portal and DSM APIs.
For HPE UIoT version 1.4.2, update to a version that addresses the malfunction in the DSM portal and DSM APIs.
For HPE UIoT version 1.5, update to a version that addresses the malfunction in the DSM portal and DSM APIs.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Hpe Uiot