← back
CVE-2018-7107

CVE-2018-7107

EPSS 0.9%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.9%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
27 Sep 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A potential security vulnerability has been identified in HPE Device Entitlement Gateway (DEG) v3.2.4, v3.3 and v3.3.1. The vulnerability could be remotely exploited to allow local SQL injection and elevation of privilege.
Affected products
Hewlett Packard Enterprise · HPE Device Entitlement Gateway (DEG)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03889en_us