Vulnerability-Lookup

CNVD-2020-33470

Vulnerability from cnvd - Published: 2020-06-18

Title

HPE Service Pack for ProLiant代码执行漏洞

Description

HPE Service Pack for ProLiant是美国惠普企业公司（Hewlett Packard Enterprise，HPE）的一套综合的系统软件和固件更新解决方案。 HPE Service Pack for ProLiant 2018.06.0版本、2018.09.0版本和2018.11.0版本中的Supplemental Update/Online ROM Flash Component存在安全漏洞。本地攻击者可利用该漏洞执行任意代码。

Severity

中

Patch Name

HPE Service Pack for ProLiant代码执行漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=emr_na-hpesbhf03945en_us

Reference

https://nvd.nist.gov/vuln/detail/CVE-2020-7135

Impacted products

Name
['HPE Service Pack for ProLiant 2018.06.0', 'HPE Service Pack for ProLiant 2018.09.0', 'HPE Service Pack for ProLiant 2018.11.0']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-7135"
    }
  },
  "description": "HPE Service Pack for ProLiant\u662f\u7f8e\u56fd\u60e0\u666e\u4f01\u4e1a\u516c\u53f8\uff08Hewlett Packard Enterprise\uff0cHPE\uff09\u7684\u4e00\u5957\u7efc\u5408\u7684\u7cfb\u7edf\u8f6f\u4ef6\u548c\u56fa\u4ef6\u66f4\u65b0\u89e3\u51b3\u65b9\u6848\u3002\n\nHPE Service Pack for ProLiant 2018.06.0\u7248\u672c\u30012018.09.0\u7248\u672c\u548c2018.11.0\u7248\u672c\u4e2d\u7684Supplemental Update/Online ROM Flash Component\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US\u0026docId=emr_na-hpesbhf03945en_us",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-33470",
  "openTime": "2020-06-18",
  "patchDescription": "HPE Service Pack for ProLiant\u662f\u7f8e\u56fd\u60e0\u666e\u4f01\u4e1a\u516c\u53f8\uff08Hewlett Packard Enterprise\uff0cHPE\uff09\u7684\u4e00\u5957\u7efc\u5408\u7684\u7cfb\u7edf\u8f6f\u4ef6\u548c\u56fa\u4ef6\u66f4\u65b0\u89e3\u51b3\u65b9\u6848\u3002\r\n\r\nHPE Service Pack for ProLiant 2018.06.0\u7248\u672c\u30012018.09.0\u7248\u672c\u548c2018.11.0\u7248\u672c\u4e2d\u7684Supplemental Update/Online ROM Flash Component\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "HPE Service Pack for ProLiant\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "HPE Service Pack for ProLiant 2018.06.0",
      "HPE Service Pack for ProLiant 2018.09.0",
      "HPE Service Pack for ProLiant 2018.11.0"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-7135",
  "serverity": "\u4e2d",
  "submitTime": "2020-04-28",
  "title": "HPE Service Pack for ProLiant\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

CVE-2020-7135 (GCVE-0-2020-7135)

Vulnerability from cvelistv5 – Published: 2020-04-27 14:16 – Updated: 2024-08-04 09:18

Summary

A potential security vulnerability has been identified in the disk drive firmware installers named Supplemental Update / Online ROM Flash Component on HPE servers running Linux. The vulnerable software is included in the HPE Service Pack for ProLiant (SPP) releases 2018.06.0, 2018.09.0, and 2018.11.0. The vulnerable software is the Supplemental Update / Online ROM Flash Component for Linux (x64) software. The installer in this software component could be locally exploited to execute arbitrary code. Drive Models can be found in the Vulnerability Resolution field of the security bulletin. The 2019_03 SPP and Supplemental update / Online ROM Flash Component for Linux (x64) after 2019.03.0 has fixed this issue.

Severity ?

No CVSS data available.

CWE

local execution of arbitrary code with privilege elevation

Assigner

hpe

References

URL

Tags

https://support.hpe.com/hpsc/doc/public/display?d…

x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

HPE

HPE Service Pack for ProLiant

Affected: 2018.06.0
Affected: 2018.09.0
Affected: 2018.11.0

HPE	HPE Server Solid State Drives	Affected: HPG2
HPE	HPE Server SAS Hard Drives	Affected: HPG2
HPE	HPE Server SATA Hard Drives	Affected: HPG2
HPE	HPE SATA Read Intensive Solid State Drives	Affected: HPG2
HPE	HPE NVMe Mixed Use Solid State Drives	Affected: HPG2
HPE	HPE Business Critical Hard Drives	Affected: HPG2
HPE	HPE Server Enterprise Hard Drives	Affected: HPG2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T09:18:03.037Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03945en_us"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "HPE Service Pack for ProLiant",
          "vendor": "HPE",
          "versions": [
            {
              "status": "affected",
              "version": "2018.06.0"
            },
            {
              "status": "affected",
              "version": "2018.09.0"
            },
            {
              "status": "affected",
              "version": "2018.11.0"
            }
          ]
        },
        {
          "product": "HPE Server Solid State Drives",
          "vendor": "HPE",
          "versions": [
            {
              "status": "affected",
              "version": "HPG2"
            }
          ]
        },
        {
          "product": "HPE Server SAS Hard Drives",
          "vendor": "HPE",
          "versions": [
            {
              "status": "affected",
              "version": "HPG2"
            }
          ]
        },
        {
          "product": "HPE Server SATA Hard Drives",
          "vendor": "HPE",
          "versions": [
            {
              "status": "affected",
              "version": "HPG2"
            }
          ]
        },
        {
          "product": "HPE SATA Read Intensive Solid State Drives",
          "vendor": "HPE",
          "versions": [
            {
              "status": "affected",
              "version": "HPG2"
            }
          ]
        },
        {
          "product": "HPE NVMe Mixed Use Solid State Drives",
          "vendor": "HPE",
          "versions": [
            {
              "status": "affected",
              "version": "HPG2"
            }
          ]
        },
        {
          "product": "HPE Business Critical Hard Drives",
          "vendor": "HPE",
          "versions": [
            {
              "status": "affected",
              "version": "HPG2"
            }
          ]
        },
        {
          "product": "HPE Server Enterprise Hard Drives",
          "vendor": "HPE",
          "versions": [
            {
              "status": "affected",
              "version": "HPG2"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A potential security vulnerability has been identified in the disk drive firmware installers named Supplemental Update / Online ROM Flash Component on HPE servers running Linux. The vulnerable software is included in the HPE Service Pack for ProLiant (SPP) releases 2018.06.0, 2018.09.0, and 2018.11.0. The vulnerable software is the Supplemental Update / Online ROM Flash Component for Linux (x64) software. The installer in this software component could be locally exploited to execute arbitrary code. Drive Models can be found in the Vulnerability Resolution field of the security bulletin. The 2019_03 SPP and Supplemental update / Online ROM Flash Component for Linux (x64) after 2019.03.0 has fixed this issue."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "local execution of arbitrary code with privilege elevation",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-27T14:16:32.000Z",
        "orgId": "eb103674-0d28-4225-80f8-39fb86215de0",
        "shortName": "hpe"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03945en_us"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-alert@hpe.com",
          "ID": "CVE-2020-7135",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "HPE Service Pack for ProLiant",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "2018.06.0"
                          },
                          {
                            "version_value": "2018.09.0"
                          },
                          {
                            "version_value": "2018.11.0"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HPE Server Solid State Drives",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "HPG2"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HPE Server SAS Hard Drives",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "HPG2"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HPE Server SATA Hard Drives",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "HPG2"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HPE SATA Read Intensive Solid State Drives",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "HPG2"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HPE NVMe Mixed Use Solid State Drives",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "HPG2"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HPE Business Critical Hard Drives",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "HPG2"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HPE Server Enterprise Hard Drives",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "HPG2"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "HPE"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A potential security vulnerability has been identified in the disk drive firmware installers named Supplemental Update / Online ROM Flash Component on HPE servers running Linux. The vulnerable software is included in the HPE Service Pack for ProLiant (SPP) releases 2018.06.0, 2018.09.0, and 2018.11.0. The vulnerable software is the Supplemental Update / Online ROM Flash Component for Linux (x64) software. The installer in this software component could be locally exploited to execute arbitrary code. Drive Models can be found in the Vulnerability Resolution field of the security bulletin. The 2019_03 SPP and Supplemental update / Online ROM Flash Component for Linux (x64) after 2019.03.0 has fixed this issue."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "local execution of arbitrary code with privilege elevation"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03945en_us",
              "refsource": "CONFIRM",
              "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03945en_us"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "eb103674-0d28-4225-80f8-39fb86215de0",
    "assignerShortName": "hpe",
    "cveId": "CVE-2020-7135",
    "datePublished": "2020-04-27T14:16:32.000Z",
    "dateReserved": "2020-01-16T00:00:00.000Z",
    "dateUpdated": "2024-08-04T09:18:03.037Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-33470

CVE-2020-7135 (GCVE-0-2020-7135)

Tags

Sightings

Nomenclature