CVE-2017-14349 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2017-14349

An authentication vulnerability in HPE SiteScope product versions 11.2x and 11.3x, allows read-only accounts to view all SiteScope interfaces and monitors, potentially exposing sensitive data.

Published: Sep 30, 2017
Updated: Apr 13, 2023
CVE: CVE-2017-14349
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-269

Affected Software
References

Software	From	Fixed in
hp / sitescope	11.21	11.21.x
hp / sitescope	11.20	11.20.x
hp / sitescope	11.24	11.24.x
hp / sitescope	11.30.521	11.30.521.x
hp / sitescope	11.22	11.22.x
hp / sitescope	11.24.391	11.24.391.x
hp / sitescope	11.23	11.23.x
hp / sitescope	11.30	11.30.x
hp / sitescope	11.31	11.31.x
hp / sitescope	11.32	11.32.x
hp / sitescope	11.33	11.33.x