A local disclosure of sensitive information vulnerability exists in HPE OneView version(s): before 7.0 or 6.60.01. A low privileged user could locally exploit this vulnerability to disclose sensitive information resulting in a complete loss of confidentiality, integrity, and availability. To exploit this vulnerability, HPE OneView must be configured with credential access to external repositories. HPE has provided a software update to resolve this vulnerability in HPE OneView.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp oneview |