Tuesday, October 27, 10:29
Home security HPE: Fixes a serious error in the SSMC console

HPE: Fixes a serious error in the SSMC console

Hewlett Packard Enterprise (HPE) has fixed a maximum severity remote authentication bypass vulnerability that affects the company's HPE StoreServ Management Console (SSMC) data center management solution.

HPE SSMC is a management and reporting console for HPE Primera (data storage for critical applications) and HPE 3PAR StoreServ systems (providers cloud services storage with AI technology).

HPE

Severity score 10/10

Vulnerability to bypass remote control identity referred to as CVE-2020-7197 and affects HP 3PAR StoreServ Management and Core Software Media prior to version 3.7.0.0.

CVE-2020-7197 was assessed by the IPE as a maximum severity vulnerability (10/10) that allows threatening factors without the privilege of exploiting it as part of low-complexity attacks that do not require interaction to users.

To mitigate the defect, HPE recommends upgrading the HPE 3PAR StoreServ (SSMC) management console to version 3.7.1.1 or later.

You can do it for free λήψη of SSMC 3.7.1.1 from the portal HPE Mylicense from all customers with a HP Passport account.

“This SSMC version includes major security bug fixes and enhancements quality which strengthen the security attitude of SSMC devices ", says the changelog.

"HPE strongly recommends that upgrade the SSMC device in this version. "

The critical SSMC vulnerability was identified and reported by Elwood Buck of the MindPoint Group, according to the US security advisory.

HP did not provide any other details regarding the internal functions of the security defect or information on the attacks that exploited the error.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Teo Ehc
Teo Ehchttps://www.secnews.gr
Be the limited edition.

LIVE NEWS

FBI: Supports US Cyber ​​Camp for IT training and cybersecurity

The USSR and the FBI are working together to support the US Cyber ​​Camp. This...
00:01:52

US: Sanctions on a Russian institute for the development of Triton malware!

The US Treasury Department announced at the end of last week sanctions for a Russian research institute, which is allegedly involved ...

How to customize notifications for specific emails in Outlook

Your inbox may be flooded with junk emails. Sometimes, though, you really need to know when a particular message will arrive ...

Biomedical cyber attack: Hackers send phishing emails

Biomedical cyber attack: Hackers send phishing emails A cyber attack is underway that targets corporate users from many companies in Greece, with emails ...

How to control the brightness of your iPhone lens

It is probably no surprise to any iPhone owner that they can use the LED flash on the back of your iPhone as ...

Check for Windows 10 updates with these settings

Microsoft has added new settings that allow users to gain more control over how Windows Update ...

Microsoft did a survey and got angry with its results

Microsoft recently commissioned research firm YouGov to conduct a survey of 5.000 users - the questions were about the most general and ...

Popular children's apps are removed from the Play Store

The extremely popular applications Number Coloring, Princess Salon and Cats & Cosplay have been removed from the Play Store, after research by ...

Facebook Oculus: Those who use a lot of headsets are not banned

Oculus' move to "require" Facebook accounts is causing serious problems for some of its biggest fans. Windows Central reports ...

The school communities of Yorktown and Croton-Harmon were violated

The school communities of Yorktown and Croton-Harmon in Westchester County, have recently fallen victim to data breach, when a malicious agent infected with ransomware ...