CNNVD-202601-2397 Information
CNNVD ID
CNNVD-202601-2397
Related CVE
- CNNVD Published: 2026-01-14
Description (Chinese)
Hewlett Packard Enterprise Orchestrator是美国慧与(Hewlett Packard Enterprise)公司的一个硬件设备。提供存储功能。 Hewlett Packard Enterprise Orchestrator存在安全漏洞,该漏洞源于可绕过多因素身份验证要求,可能导致创建管理员用户账户。
Description (English)
Hewlett Packard Enterprise Orchestra is a hardware device for Hewlett Packard Enterprise. Provides storage. There is a security loophole in Hewlett Packard Enterprise Orchestra that stems from the identification requirements that circumvent too many factors and may lead to the creation of administrator user accounts.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
慧与科技
Published
2026-01-14
Last Modified
2026-02-24
References
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04992en_us&docLocale=en_US https://access.redhat.com/security/cve/cve-2025-37184
Patch
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04992en_us&docLocale=en_US
Share on: