CVE-2014-2603
First published: Sat May 10 2014(Updated: )
Unspecified vulnerability on HP 8/20q switches, SN6000 switches, and 8Gb Simple SAN Connection Kit with firmware before 8.0.14.08.00 allows remote authenticated users to obtain sensitive information via unknown vectors.
Credit: hp-security-alert@hp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP H-series Fibre Channel Switch Firmware | <=8.0 | |
| HP 8/20Q Fibre Channel Switch 16 Port | =ak242a | |
| HP 8/20Q Fibre Channel Switch 16 Port | =ak242b | |
| HP 8/20q Fibre Channel Switch | =aq233a | |
| HP 8/20q Fibre Channel Switch | =aq233b | |
| HP 8GB Simple SAN Connection Kit | =ak241a | |
| HP 8GB Simple SAN Connection Kit | =ak241b | |
| HP SN6000 Stackable 8GB 12-Port Single Power Fibre Channel Switch | =bk780a | |
| HP SN6000 Stackable 8GB 12-Port Single Power Fibre Channel Switch | =bk780b | |
| HP SN6000 Stackable 8GB 24-Port Dual Power Fibre Channel Switch | =aw576a | |
| HP SN6000 Stackable 8GB 24-Port Dual Power Fibre Channel Switch | =aw576b | |
| HP SN6000 Stackable 8GB 24-port Single Power Fibre Channel Switch | =aw575a | |
| HP SN6000 Stackable 8GB 24-port Single Power Fibre Channel Switch | =aw575b |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2014-2603?
CVE-2014-2603 is considered a medium severity vulnerability due to potential exposure of sensitive information.
How do I fix CVE-2014-2603?
To fix CVE-2014-2603, upgrade the firmware to version 8.0.14.08.00 or later.
Who is affected by CVE-2014-2603?
CVE-2014-2603 affects HP 8/20q switches, SN6000 switches, and the 8Gb Simple SAN Connection Kit with specific firmware versions.
What kind of information can be exposed due to CVE-2014-2603?
CVE-2014-2603 allows remote authenticated users to potentially access sensitive information, the specifics of which are not disclosed.
Is there a workaround for CVE-2014-2603?
There are no documented workarounds for CVE-2014-2603; the only mitigation is to update the firmware.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/references
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/hp
- canonical/hp h-series fibre channel switch firmware
- version/hp h-series fibre channel switch firmware/8.0
- canonical/hp 8/20q fibre channel switch 16 port
- version/hp 8/20q fibre channel switch 16 port/ak242a
- version/hp 8/20q fibre channel switch 16 port/ak242b
- canonical/hp 8/20q fibre channel switch
- version/hp 8/20q fibre channel switch/aq233a
- version/hp 8/20q fibre channel switch/aq233b
- canonical/hp 8gb simple san connection kit
- version/hp 8gb simple san connection kit/ak241a
- version/hp 8gb simple san connection kit/ak241b
- canonical/hp sn6000 stackable 8gb 12-port single power fibre channel switch
- version/hp sn6000 stackable 8gb 12-port single power fibre channel switch/bk780a
- version/hp sn6000 stackable 8gb 12-port single power fibre channel switch/bk780b
- canonical/hp sn6000 stackable 8gb 24-port dual power fibre channel switch
- version/hp sn6000 stackable 8gb 24-port dual power fibre channel switch/aw576a
- version/hp sn6000 stackable 8gb 24-port dual power fibre channel switch/aw576b
- canonical/hp sn6000 stackable 8gb 24-port single power fibre channel switch
- version/hp sn6000 stackable 8gb 24-port single power fibre channel switch/aw575a
- version/hp sn6000 stackable 8gb 24-port single power fibre channel switch/aw575b