CVE-2022-37939

LOW

HPE Superdome Flex <3.65.8, Superdome Flex 280 <1.45.8 - Info Discl...

Title source: llm

Description

A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers. The vulnerability could be locally exploited to allow disclosure of information. HPE has made the following software to resolve the vulnerability in HPE Superdome Flex Servers v3.65.8 and Superdome Flex 280 Servers v1.45.8.

References (1)

Core 1

Core References

Vendor Advisory

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04453en_us

Scores

CVSS v3 2.3

EPSS 0.0005

EPSS Percentile 16.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

Status published

Products (2)

hpe/superdome_flex_280_server_firmware < 1.45.8

hpe/superdome_flex_server_firmware < 3.65.8

Published Mar 10, 2023

Tracked Since Feb 18, 2026