Vulnerability Details : CVE-2010-3008
Unspecified vulnerability in HP Data Protector Express, and Data Protector Express Single Server Edition (SSE), 3.x before build 56936 and 4.x before build 56906 on Windows allows local users to gain privileges or cause a denial of service via unknown vectors, a different vulnerability than CVE-2010-3007.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2010-3008
Probability of exploitation activity in the next 30 days: 60.06%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 98 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-3008
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
References for CVE-2010-3008
-
http://marc.info/?l=bugtraq&m=128404562909349&w=2
'[security bulletin] HPSBMA02516 SSRT090232 rev.1 - HP Data Protector Express and HP Data Protector E' - MARCPatch;Vendor Advisory
Products affected by CVE-2010-3008
- cpe:2.3:a:hp:data_protector_express:3.5:sp2:*:*:*:*:*:*
- cpe:2.3:a:hp:data_protector_express:4.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:hp:data_protector_express:3.5:sp1:*:*:*:*:*:*
- cpe:2.3:a:hp:data_protector_express:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:hp:data_protector_express:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:hp:data_protector_express:4.0:sp1:single_server:*:*:*:*:*
- cpe:2.3:a:hp:data_protector_express:4.0:*:single_server:*:*:*:*:*
- cpe:2.3:a:hp:data_protector_express:3.5:sp2:single_server:*:*:*:*:*
- cpe:2.3:a:hp:data_protector_express:3.5:sp1:single_server:*:*:*:*:*
- cpe:2.3:a:hp:data_protector_express:3.1:*:single_server:*:*:*:*:*