CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-24623

A potential security vulnerability has been identified in Hewlett Packard Enterprise Universal API Framework. The vulnerability could be remotely exploited to allow SQL injection in HPE Universal API Framework for VMware Esxi v2.5.2 and HPE Universal API Framework for Microsoft Hyper-V (VHD).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 36.2%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 3.3

References

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04024en_us
https://www.zerodayinitiative.com/advisories/ZDI-20-1208/
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04024en_us
https://www.zerodayinitiative.com/advisories/ZDI-20-1208/

Products affected by CVE-2020-24623

Hpe » Universal Api Framework » Version: N/A

cpe:2.3:a:hpe:universal_api_framework:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-24623

Products

Pricing

Contact Us