CVE-2022-37935
First published: Sat Feb 18 2023(Updated: )
HPE OneView for VMware vCenter, in certain circumstances, may disclose the “HPE OneView” Username and Password.
Credit: security-alert@hpe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Hp Oneview For Vmware Vcenter | >=10.0<=10.4 | |
| Hp Oneview For Vmware Vcenter | >=11.0<=11.2 | |
| Hp Oneview For Vmware Vcenter | =9.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-37935?
CVE-2022-37935 is a vulnerability in HPE OneView for VMware vCenter that can potentially disclose the "HPE OneView" Username and Password.
What software versions are affected by CVE-2022-37935?
Versions 9.6, 10.0 to 10.4, and 11.0 to 11.2 of HPE OneView for VMware vCenter are affected by CVE-2022-37935.
What is the severity rating of CVE-2022-37935?
CVE-2022-37935 has a severity rating of medium with a value of 5.5.
How can CVE-2022-37935 be fixed?
To fix CVE-2022-37935, it is recommended to update HPE OneView for VMware vCenter to a patched version as provided by HPE.
Where can I find more information about CVE-2022-37935?
For more information about CVE-2022-37935, you can refer to the official HPE Security Bulletin at https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbgn04449en_us
- collector/nvd-index
- agent/type
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/tags
- agent/event
- agent/remedy
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/hp
- canonical/hp oneview for vmware vcenter
- version/hp oneview for vmware vcenter/10.0
- version/hp oneview for vmware vcenter/10.4
- version/hp oneview for vmware vcenter/11.0
- version/hp oneview for vmware vcenter/11.2
- version/hp oneview for vmware vcenter/9.6