QwikSec

Security Database

CVE

CWE

Training

CVE-2018-7108

Published: Sep 27, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

HPE StorageWorks XP7 Automation Director (AutoDir) version 8.5.2-02 to earlier than 8.6.1-00 has a local and remote authentication bypass vulnerability that exposed the user authentication information of the storage system. This problem sometimes occurred under specific conditions when running a service template.

Vendor	Product	Versions
Hewlett Packard Enterprise	HPE StorageWorks XP7 Automation Director (AutoDir)	affected `version 8.5.2-02 to earlier than 8.6.1-00`

References

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03879en_us

x_refsource_CONFIRM

vdb-entry

x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.