Vulnerability Details : CVE-2014-2603
Unspecified vulnerability on HP 8/20q switches, SN6000 switches, and 8Gb Simple SAN Connection Kit with firmware before 8.0.14.08.00 allows remote authenticated users to obtain sensitive information via unknown vectors.
Products affected by CVE-2014-2603
- cpe:2.3:o:hp:hp_h-series_fibre_channel_switch_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:h:hp:8\/20q_fibre_channel_switch_8_port:aq233a:*:*:*:*:*:*:*
- cpe:2.3:h:hp:8\/20q_fibre_channel_switch_8_port:aq233b:*:*:*:*:*:*:*
- cpe:2.3:h:hp:8\/20q_fibre_channel_switch_16_port:ak242b:*:*:*:*:*:*:*
- cpe:2.3:h:hp:8\/20q_fibre_channel_switch_16_port:ak242a:*:*:*:*:*:*:*
- cpe:2.3:h:hp:8gb_simple_san_connection_kit:ak241b:*:*:*:*:*:*:*
- cpe:2.3:h:hp:8gb_simple_san_connection_kit:ak241a:*:*:*:*:*:*:*
- cpe:2.3:h:hp:sn6000_stackable_8gb_24-port_single_power_fibre_channel_switch:aw575b:*:*:*:*:*:*:*
- cpe:2.3:h:hp:sn6000_stackable_8gb_24-port_single_power_fibre_channel_switch:aw575a:*:*:*:*:*:*:*
- cpe:2.3:h:hp:sn6000_stackable_8gb_24-port_dual_power_fibre_channel_switch:aw576b:*:*:*:*:*:*:*
- cpe:2.3:h:hp:sn6000_stackable_8gb_24-port_dual_power_fibre_channel_switch:aw576a:*:*:*:*:*:*:*
- cpe:2.3:h:hp:sn6000_stackable_8gb_12-port_single_power_fibre_channel_switch:bk780b:*:*:*:*:*:*:*
- cpe:2.3:h:hp:sn6000_stackable_8gb_12-port_single_power_fibre_channel_switch:bk780a:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2014-2603
0.09%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 37 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2014-2603
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
1.7
|
LOW | AV:N/AC:H/Au:M/C:P/I:N/A:N |
3.2
|
2.9
|
NIST |
References for CVE-2014-2603
-
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04277407
HP Support for Technical Help and Troubleshooting | HP® Customer Service.Vendor Advisory
Jump to