HPE.Network.Automation.PermissionFilter.Authentication.Bypass

description-logoDescription

This indicates an attack attempt to exploit a Authentication Bypass vulnerability in HPE Network Automation.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted request. A remote attacker may be able exploit this to by bypass authentication, leading to further attacks.

affected-products-logoAffected Products

HPE Network Automation 10.0x prior to 10.00.022
HPE Network Automation 10.1x prior to 10.11.03
HPE Network Automation 10.2x prior to 10.21.01
HPE Network Automation v9.1x
HPE Network Automation v9.2x

Impact logoImpact

Security Bypass: Remote attackers can bypass security features of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbgn03740en_us

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-10-25 25.665 Sig Added