Vulnerability Details CVE-2020-7197
SSMC3.7.0.0 is vulnerable to remote authentication bypass. HPE StoreServ Management Console (SSMC) 3.7.0.0 is an off node multiarray manager web application and remains isolated from data on the managed arrays. HPE has provided an update to HPE StoreServ Management Console (SSMC) software 3.7.0.0* Upgrade to HPE 3PAR StoreServ Management Console 3.7.1.1 or later.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 80.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-7197
-
cpe:2.3:a:hp:storeserv_management_console:3.4
-
cpe:2.3:a:hp:storeserv_management_console:3.4.1
-
cpe:2.3:a:hp:storeserv_management_console:3.5.0