CVE-2018-7070 — MEDIUM (5.3)

Q: How severe is CVE-2018-7070?

CVE-2018-7070 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-7070?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Centralview Fraud Risk Management.

Vulnerability Description

HPE has identified a remote disclosure of information vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issue is resolved in HF16 for HPE CV 6.1 or subsequent version.

CVSS Score

5.3

MEDIUM

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Hp	Centralview Fraud Risk Management	< 6.1

Related Weaknesses (CWE)

CWE-200

References

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpeVendor Advisory
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpeVendor Advisory

FAQ

What is CVE-2018-7070?

CVE-2018-7070 is a vulnerability with a CVSS score of 5.3 (MEDIUM). HPE has identified a remote disclosure of information vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issue is resolved in HF16 for HPE CV 6.1 or subsequent ve...

How severe is CVE-2018-7070?

CVE-2018-7070 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-7070?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Centralview Fraud Risk Management.