A remote session reuse vulnerability leading to access restriction bypass was discovered in HPE MSA 2040 SAN Storage; HPE MSA 1040 SAN Storage; HPE MSA 1050 SAN Storage; HPE MSA 2042 SAN Storage; HPE MSA 2050 SAN Storage; HPE MSA 2052 SAN Storage version(s): GL225P001 and earlier; GL225P001 and earlier; VE270R001-01 and earlier; GL225P001 and earlier; VL270R001-01 and earlier; VL270R001-01 and earlier.
2020-04-17T14:15:14.007
2024-11-21T04:22:08.403
Modified
CVSSv3.1: 6.4 (MEDIUM)
AV:N/AC:H/Au:S/C:C/I:C/A:C
3.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | hpe | msa_1040_firmware | ≤ gl225p001 | Yes |
| Hardware | hpe | msa_1040 | - | No |
| Operating System | hpe | msa_2040_firmware | ≤ gl225p001 | Yes |
| Hardware | hpe | msa_2040 | - | No |
| Operating System | hpe | msa_2042_firmware | ≤ gl225p001 | Yes |
| Hardware | hpe | msa_2042 | - | No |
| Operating System | hpe | msa_1050_firmware | ≤ ve270r001-01 | Yes |
| Hardware | hpe | msa_1050 | - | No |
| Operating System | hpe | msa_2050_firmware | ≤ vl270r001-01 | Yes |
| Hardware | hpe | msa_2050 | - | No |
| Operating System | hpe | msa_2052_firmware | ≤ vl270r001-01 | Yes |
| Hardware | hpe | msa_2052 | - | No |