CVE-2021-26587
Summary
| CVE | CVE-2021-26587 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-09-27 15:15:00 UTC |
| Updated | 2021-10-05 18:28:00 UTC |
| Description | A potential DOM-based Cross Site Scripting security vulnerability has been identified in HPE StoreOnce. The vulnerability could be remotely exploited to cause an elevation of privilege leading to partial impact to confidentiality, availability, and integrity. HPE has made the following software update - HPE StoreOnce 4.3.0, to resolve the vulnerability in HPE StoreOnce. |
Risk And Classification
Problem Types: CWE-79
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Hpe | Storeonce 3620 | - | All | All | All |
| Operating System | Hpe | Storeonce 3620 Firmware | All | All | All | All |
| Hardware | Hpe | Storeonce 3640 | - | All | All | All |
| Operating System | Hpe | Storeonce 3640 Firmware | All | All | All | All |
| Hardware | Hpe | Storeonce 5200 | - | All | All | All |
| Operating System | Hpe | Storeonce 5200 Firmware | All | All | All | All |
| Hardware | Hpe | Storeonce 5250 | - | All | All | All |
| Operating System | Hpe | Storeonce 5250 Firmware | All | All | All | All |
| Hardware | Hpe | Storeonce 5650 | - | All | All | All |
| Operating System | Hpe | Storeonce 5650 Firmware | All | All | All | All |
| Hardware | Hpe | Storeonce Vsa 4tb | - | All | All | All |
| Operating System | Hpe | Storeonce Vsa 4tb Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Document Display | HPE Support Center | MISC | support.hpe.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.