PT-2022-19112 · Hewlett Packard · Hpe Flexnetwork+1

Published

2022-07-08

Updated

2022-07-16

CVE-2022-28624

CVSS v3.1

4.8

Medium

Vector

AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions HPE FlexNetwork versions prior to 7.10.R3507P02 HPE FlexFabric versions prior to 7.10.R6635

Description A potential security issue has been identified in certain HPE FlexNetwork and FlexFabric switch products, which could be remotely exploited to allow cross-site scripting (XSS).

Recommendations For HPE FlexNetwork versions prior to 7.10.R3507P02, update to version 7.10.R3507P02 or later. For HPE FlexFabric versions prior to 7.10.R6635, update to version 7.10.R6635 or later.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2022-28624

Affected Products

Hpe Flexfabric

Hpe Flexnetwork

PT-2022-19112 · Hewlett Packard · Hpe Flexnetwork+1

CVE-2022-28624

Weakness Enumeration

Related Identifiers

Affected Products

References · 4