CVE-2018-7120
First published: Fri May 10 2019(Updated: )
A security vulnerability in the HPE Virtual Connect SE 16Gb Fibre Channel Module for HPE Synergy running firmware 5.00.50, which is part of the HPE Synergy Custom SPP 2018.11.20190205, could allow local or remote unauthorized elevation of privilege.
Credit: security-alert@hpe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP Synergy 660 Firmware | =5.00.50 | |
| HP Synergy |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-7120?
CVE-2018-7120 is classified as a high-severity vulnerability due to its potential for unauthorized elevation of privilege.
How do I fix CVE-2018-7120?
To remediate CVE-2018-7120, upgrade the HPE Virtual Connect SE 16Gb Fibre Channel Module firmware to the latest version, specifically version 5.00.50 or later.
Who is affected by CVE-2018-7120?
Organizations using the HPE Virtual Connect SE 16Gb Fibre Channel Module firmware version 5.00.50 are at risk from CVE-2018-7120.
What type of attacks can CVE-2018-7120 facilitate?
CVE-2018-7120 can allow local or remote attackers to gain unauthorized elevated privileges on affected systems.
Is there a workaround for CVE-2018-7120?
No specific workaround for CVE-2018-7120 is provided; applying the firmware update is the recommended action.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/references
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/hp
- canonical/hp synergy 660 firmware
- version/hp synergy 660 firmware/5.00.50
- canonical/hp synergy