Vulnerability Details : CVE-2009-2680
Unspecified vulnerability in the Remote Management Interface (RMI) for MSL Tape Libraries and 1/8 G2 Tape Autoloaders in HP StorageWorks 1/8 G2 Tape Autoloader firmware 2.30 and earlier, MSL2024 Tape Library firmware 4.20 and earlier, MSL4048 Tape Library firmware 6.50 and earlier, and MSL8096 Tape Library firmware 8.90 and earlier allows remote attackers to cause a denial of service via unknown vectors.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2009-2680
Probability of exploitation activity in the next 30 days: 3.74%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 91 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2009-2680
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
8.5
|
HIGH | AV:N/AC:L/Au:N/C:N/I:P/A:C |
10.0
|
7.8
|
NIST |
References for CVE-2009-2680
-
http://securitytracker.com/id?1022905
-
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405
Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/36388
-
http://www.vupen.com/english/advisories/2009/2662
Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/53237
Products affected by CVE-2009-2680
- cpe:2.3:h:hp:storageworks_1\/8_g2_tape_autoloader:*:*:*:*:*:*:*:*
- cpe:2.3:h:hp:storageworks_msl2024_tape_library:*:*:*:*:*:*:*:*
- cpe:2.3:h:hp:storageworks_msl4048_tape_library:*:*:*:*:*:*:*:*
- cpe:2.3:h:hp:storageworks_msl8096_tape_library:*:*:*:*:*:*:*:*