CVE-2017-5796

HIGH

HP J9627a Firmware < ra.15.15.0014 - CSRF

Title source: rule
STIX 2.1

Description

A Remote Cross Site Request Forgery (CSRF) vulnerability in HPE 2620 Series Network Switches version RA.15.05.0006 was found.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/96813

Scores

CVSS v3 8.8
EPSS 0.0043
EPSS Percentile 62.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-352
Status published
Products (5)
hp/j9623a_firmware < ra.15.15.0014
hp/j9624a_firmware < ra.15.15.0014
hp/j9625a_firmware < ra.15.15.0014
hp/j9626a_firmware < ra.15.15.0014
hp/j9627a_firmware < ra.15.15.0014
Published Feb 15, 2018
Tracked Since Feb 18, 2026