What is the severity of CVE-2018-7095?

CVE-2018-7095 has been classified as a high severity vulnerability due to its potential for remote exploitation.

How do I fix CVE-2018-7095?

To fix CVE-2018-7095, upgrade the 3PAR Service Processor to version SP-4.4.0.GA-110(MU7) or later.

What types of access are at risk in CVE-2018-7095?

CVE-2018-7095 allows an attacker to bypass access restrictions on affected systems.

Which versions of HP 3PAR Service Processor are affected by CVE-2018-7095?

Versions SP-4.2.0 GA, SP-4.3.0 GA-17, SP-4.3.0 GA-24, and SP-4.4.0 up to GA-88 are affected by CVE-2018-7095.

Who should be concerned about CVE-2018-7095?

Organizations using the specified vulnerable versions of the HP 3PAR Service Processor should take immediate action to mitigate CVE-2018-7095.

Vulnerability/
CVE-2018-7095

critical

9.8

14/8/2018

5/8/2024

CVE-2018-7095

First published: Tue Aug 14 2018(Updated: )

A security vulnerability was identified in 3PAR Service Processor (SP) prior to SP-4.4.0.GA-110(MU7). The vulnerability may be exploited remotely to allow access restriction bypass.

Credit: security-alert@hpe.com

Affected Software	Affected Version	How to fix
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.2.0-ga
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.3.0-ga-17
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.3.0-ga-24
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-22
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-30
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-53
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-58
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-86
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-88

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-7095?
CVE-2018-7095 has been classified as a high severity vulnerability due to its potential for remote exploitation.
How do I fix CVE-2018-7095?
To fix CVE-2018-7095, upgrade the 3PAR Service Processor to version SP-4.4.0.GA-110(MU7) or later.
What types of access are at risk in CVE-2018-7095?
CVE-2018-7095 allows an attacker to bypass access restrictions on affected systems.
Which versions of HP 3PAR Service Processor are affected by CVE-2018-7095?
Versions SP-4.2.0 GA, SP-4.3.0 GA-17, SP-4.3.0 GA-24, and SP-4.4.0 up to GA-88 are affected by CVE-2018-7095.
Who should be concerned about CVE-2018-7095?
Organizations using the specified vulnerable versions of the HP 3PAR Service Processor should take immediate action to mitigate CVE-2018-7095.

agent/references
agent/softwarecombine
agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/hp
canonical/hewlett packard enterprise 3par service provider
version/hewlett packard enterprise 3par service provider/sp-4.2.0-ga
version/hewlett packard enterprise 3par service provider/sp-4.3.0-ga-17
version/hewlett packard enterprise 3par service provider/sp-4.3.0-ga-24
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-22
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-30
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-53
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-58
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-86
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-88