Vulnerability Description
A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers. The vulnerability could be exploited to allow local unauthorized data injection. HPE has made the following software updates to resolve the vulnerability in HPE Superdome Flex firmware 3.60.50 and below and Superdome Flex 280 servers firmware 1.40.60 and below.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hpe | Superdome Flex 280 Firmware | < 1.40.60 |
| Hpe | Superdome Flex 280 | - |
| Hpe | Superdome Flex Firmware | < 3.60.50 |
| Hpe | Superdome Flex | - |
Related Weaknesses (CWE)
References
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpeVendor Advisory
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpeVendor Advisory
FAQ
What is CVE-2022-37933?
CVE-2022-37933 is a vulnerability with a CVSS score of 7.3 (HIGH). A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers. The vulnerability could be exploited to allow local unauthorized data injection. HPE has ma...
How severe is CVE-2022-37933?
CVE-2022-37933 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-37933?
Check the references section above for vendor advisories and patch information. Affected products include: Hpe Superdome Flex 280 Firmware, Hpe Superdome Flex 280, Hpe Superdome Flex Firmware, Hpe Superdome Flex.