Vulnerability Details CVE-2020-7197
SSMC3.7.0.0 is vulnerable to remote authentication bypass. HPE StoreServ Management Console (SSMC) 3.7.0.0 is an off node multiarray manager web application and remains isolated from data on the managed arrays. HPE has provided an update to HPE StoreServ Management Console (SSMC) software 3.7.0.0* Upgrade to HPE 3PAR StoreServ Management Console 3.7.1.1 or later.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-7197
-
cpe:2.3:a:hp:storeserv_management_console:3.4
-
cpe:2.3:a:hp:storeserv_management_console:3.4.1
-
cpe:2.3:a:hp:storeserv_management_console:3.5.0