Security News > 2020 > October > HPE fixes maximum severity remote auth bypass bug in SSMC console

HPE fixes maximum severity remote auth bypass bug in SSMC console
2020-10-23 18:22

Hewlett Packard Enterprise has fixed a maximum severity remote authentication bypass vulnerability affecting the company's HPE StoreServ Management Console data center storage management solution.

HPE SSMC is a management and reporting console for HPE Primera and HPE 3PAR StoreServ systems data center arrays.

To mitigate the flaw, HPE recommends upgrading the HPE 3PAR StoreServ Management Console to 3.7.1.1 or later.

SSMC 3.7.1.1 can be downloaded for free from the HPE Mylicense portal by all costumers with an HPE Passport Account.

65 critical RCE bugs also fixed in HPE iMC. Earlier this month, HPE also patched 64 security vulnerabilities affecting HPE Intelligent Management Center prior to 7.3.


News URL

https://www.bleepingcomputer.com/news/security/hpe-fixes-maximum-severity-remote-auth-bypass-bug-in-ssmc-console/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
HPE 172 0 45 81 20 146