CVE-2022-37932 HIGH

CVE-2022-37932

Vendor Hewlett Packard Enterprise (Hpe)
Product Hewlett Packard Enterprise OfficeConnect 1820, 1850, and 1920S Network switches
Published November 30, 2022
Last update April 24, 2025

CVSS base score

8.8/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A potential security vulnerability has been identified in Hewlett Packard Enterprise OfficeConnect 1820, 1850, and 1920S Network switches. The vulnerability could be remotely exploited to allow authentication bypass. HPE has made the following software updates to resolve the vulnerability in Hewlett Packard Enterprise OfficeConnect 1820, 1850 and 1920S Network switches versions: Prior to PT.02.14; Prior to PC.01.22; Prior to PO.01.21; Prior to PD.02.22;

Key dates

02Disclosure timeline

November 30, 2022 CVE published
April 24, 2025 Record updated