What is the severity of CVE-2018-7099?

CVE-2018-7099 is considered a medium severity vulnerability due to its potential for local exploitation to disclose privileged information.

How do I fix CVE-2018-7099?

To mitigate CVE-2018-7099, upgrade to 3PAR Service Processor version SP-4.4.0.GA-110(MU7) or later.

What systems are affected by CVE-2018-7099?

CVE-2018-7099 affects HP 3PAR Service Provider versions SP-4.2.0 to SP-4.4.0 prior to SP-4.4.0.GA-110(MU7).

What information might be disclosed due to CVE-2018-7099?

CVE-2018-7099 can lead to the exposure of sensitive privileged information within the system.

Is there a workaround for CVE-2018-7099?

There is no documented workaround for CVE-2018-7099, so upgrading to the fixed version is recommended.

Vulnerability/
CVE-2018-7099

medium

5.5

14/8/2018

5/8/2024

CVE-2018-7099

First published: Tue Aug 14 2018(Updated: )

A security vulnerability was identified in 3PAR Service Processor (SP) prior to SP-4.4.0.GA-110(MU7). The vulnerability may be locally exploited to allow disclosure of privileged information.

Credit: security-alert@hpe.com

Affected Software	Affected Version	How to fix
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.2.0-ga
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.3.0-ga-17
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.3.0-ga-24
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-22
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-30
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-53
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-58
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-86
Hewlett Packard Enterprise 3PAR Service Provider	=sp-4.4.0-ga-88

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-7099?
CVE-2018-7099 is considered a medium severity vulnerability due to its potential for local exploitation to disclose privileged information.
How do I fix CVE-2018-7099?
To mitigate CVE-2018-7099, upgrade to 3PAR Service Processor version SP-4.4.0.GA-110(MU7) or later.
What systems are affected by CVE-2018-7099?
CVE-2018-7099 affects HP 3PAR Service Provider versions SP-4.2.0 to SP-4.4.0 prior to SP-4.4.0.GA-110(MU7).
What information might be disclosed due to CVE-2018-7099?
CVE-2018-7099 can lead to the exposure of sensitive privileged information within the system.
Is there a workaround for CVE-2018-7099?
There is no documented workaround for CVE-2018-7099, so upgrading to the fixed version is recommended.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/hp
canonical/hewlett packard enterprise 3par service provider
version/hewlett packard enterprise 3par service provider/sp-4.2.0-ga
version/hewlett packard enterprise 3par service provider/sp-4.3.0-ga-17
version/hewlett packard enterprise 3par service provider/sp-4.3.0-ga-24
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-22
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-30
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-53
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-58
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-86
version/hewlett packard enterprise 3par service provider/sp-4.4.0-ga-88