FKIE_CVE-2014-2603

Vulnerability from fkie_nvd - Published: 2014-05-10 01:55 - Updated: 2025-04-12 10:46
Severity ?
Summary
Unspecified vulnerability on HP 8/20q switches, SN6000 switches, and 8Gb Simple SAN Connection Kit with firmware before 8.0.14.08.00 allows remote authenticated users to obtain sensitive information via unknown vectors.
References
hp-security-alert@hp.comhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04277407Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04277407Vendor Advisory
Impacted products
Vendor Product Version
hp hp_h-series_fibre_channel_switch_firmware *
hp 8\/20q_fibre_channel_switch_16_port ak242a
hp 8\/20q_fibre_channel_switch_16_port ak242b
hp 8\/20q_fibre_channel_switch_8_port aq233a
hp 8\/20q_fibre_channel_switch_8_port aq233b
hp 8gb_simple_san_connection_kit ak241a
hp 8gb_simple_san_connection_kit ak241b
hp sn6000_stackable_8gb_12-port_single_power_fibre_channel_switch bk780a
hp sn6000_stackable_8gb_12-port_single_power_fibre_channel_switch bk780b
hp sn6000_stackable_8gb_24-port_dual_power_fibre_channel_switch aw576a
hp sn6000_stackable_8gb_24-port_dual_power_fibre_channel_switch aw576b
hp sn6000_stackable_8gb_24-port_single_power_fibre_channel_switch aw575a
hp sn6000_stackable_8gb_24-port_single_power_fibre_channel_switch aw575b
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:hp:hp_h-series_fibre_channel_switch_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "86A0CC38-CD56-44DB-AA0B-49EF86B75E43",
              "versionEndIncluding": "8.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:hp:8\\/20q_fibre_channel_switch_16_port:ak242a:*:*:*:*:*:*:*",
              "matchCriteriaId": "C2700B52-1301-45B8-8104-E23C0FEB2CA3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:8\\/20q_fibre_channel_switch_16_port:ak242b:*:*:*:*:*:*:*",
              "matchCriteriaId": "F94AC054-9B9D-4C8E-9342-D07D06EDC9C9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:8\\/20q_fibre_channel_switch_8_port:aq233a:*:*:*:*:*:*:*",
              "matchCriteriaId": "F08A0233-0607-440D-9DB2-528ADE36B6D1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:8\\/20q_fibre_channel_switch_8_port:aq233b:*:*:*:*:*:*:*",
              "matchCriteriaId": "75CE15FE-CB23-4F53-9CC5-B3A0937B358C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:8gb_simple_san_connection_kit:ak241a:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C91383C-8D85-4DB7-8485-407A6787A390",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:8gb_simple_san_connection_kit:ak241b:*:*:*:*:*:*:*",
              "matchCriteriaId": "DA1A438D-0D36-4C52-B1F8-6DCA3A2DB6D4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:sn6000_stackable_8gb_12-port_single_power_fibre_channel_switch:bk780a:*:*:*:*:*:*:*",
              "matchCriteriaId": "6BB4DDF0-6B46-4AF5-8B31-DECC1FAE1266",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:sn6000_stackable_8gb_12-port_single_power_fibre_channel_switch:bk780b:*:*:*:*:*:*:*",
              "matchCriteriaId": "F230D2F6-75D1-4807-A348-165972BF4678",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:sn6000_stackable_8gb_24-port_dual_power_fibre_channel_switch:aw576a:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C316F96-A99B-46C2-8C26-03D5D057AD0E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:sn6000_stackable_8gb_24-port_dual_power_fibre_channel_switch:aw576b:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD64BF50-7E0E-4E1C-98A0-AA8C84766551",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:sn6000_stackable_8gb_24-port_single_power_fibre_channel_switch:aw575a:*:*:*:*:*:*:*",
              "matchCriteriaId": "55C49C98-E9A3-40F8-8051-43A09D76DADD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:sn6000_stackable_8gb_24-port_single_power_fibre_channel_switch:aw575b:*:*:*:*:*:*:*",
              "matchCriteriaId": "ED91C3AE-7732-4EB3-BAC6-CD148DF8D676",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability on HP 8/20q switches, SN6000 switches, and 8Gb Simple SAN Connection Kit with firmware before 8.0.14.08.00 allows remote authenticated users to obtain sensitive information via unknown vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en switches HP 8/20q , switches SN6000 y 8Gb Simple SAN Connection Kit con firmware anterior a 8.0.14.08.00 permite a usuarios remotos autenticados obtener informaci\u00f3n sensible a trav\u00e9s de vectores desconocidos."
    }
  ],
  "id": "CVE-2014-2603",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "HIGH",
          "accessVector": "NETWORK",
          "authentication": "MULTIPLE",
          "availabilityImpact": "NONE",
          "baseScore": 1.7,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:H/Au:M/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 3.2,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2014-05-10T01:55:05.907",
  "references": [
    {
      "source": "hp-security-alert@hp.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04277407"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04277407"
    }
  ],
  "sourceIdentifier": "hp-security-alert@hp.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.