Vulnerability Details CVE-2022-23702
A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 Servers. The vulnerability could be locally exploited to allow an user with Administrator access to escalate their privilege. The vulnerability is resolved in the latest firmware update. HPE Superdome Flex Server Version 3.50.58 or later, HPE Superdome Flex 280 Server Version 1.20.204 or later.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.4%
CVSS Severity
CVSS v3 Score 6.7
CVSS v2 Score 4.6
References
Products affected by CVE-2022-23702
-
cpe:2.3:h:hpe:superdome_flex_280_server:-
-
cpe:2.3:h:hpe:superdome_flex_server:-
-
cpe:2.3:o:hpe:superdome_flex_280_server_firmware:-
-
cpe:2.3:o:hpe:superdome_flex_server_firmware:3.20.186
-
cpe:2.3:o:hpe:superdome_flex_server_firmware:3.20.206
-
cpe:2.3:o:hpe:superdome_flex_server_firmware:3.25.46
-
cpe:2.3:o:hpe:superdome_flex_server_firmware:3.30.142
-
cpe:2.3:o:hpe:superdome_flex_server_firmware:3.40.106