CVE-2022-23702
MEDIUMHPE Superdome Flex <3.50.58-<1.20.204 - Privilege Escalation
Title source: llmDescription
A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 Servers. The vulnerability could be locally exploited to allow an user with Administrator access to escalate their privilege. The vulnerability is resolved in the latest firmware update. HPE Superdome Flex Server Version 3.50.58 or later, HPE Superdome Flex 280 Server Version 1.20.204 or later.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04266en_us
Scores
CVSS v3
6.7
EPSS
0.0006
EPSS Percentile
17.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (2)
hpe/superdome_flex_280_server_firmware
< 1.20.204
hpe/superdome_flex_server_firmware
< 3.50.58
Published
Apr 12, 2022
Tracked Since
Feb 18, 2026