A command injection remote code execution vulnerability exists in HPE StoreOnce Software.
References
Link | Resource |
---|---|
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbst04847en_us&docLocale=en_US | Vendor Advisory |
Configurations
History
02 Jul 2025, 18:01
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbst04847en_us&docLocale=en_US - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
First Time |
Hpe
Hpe storeonce System |
|
CPE | cpe:2.3:a:hpe:storeonce_system:*:*:*:*:*:*:*:* | |
Summary |
|
02 Jun 2025, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-06-02 15:15
Updated : 2025-07-02 18:01
NVD link : CVE-2025-37096
Mitre link : CVE-2025-37096
CVE.ORG link : CVE-2025-37096
JSON object : View
Products Affected
hpe
- storeonce_system
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')