CVE-2012-4362

medium

HPE

CVSS v3 Base Score

4.0

AV:N/AC:L/Au:S/C:N/I:P/A:N

EPSS Score

22.1%

Exploitation probability in 30 days

Top 4% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

None

Integrity

Availability

None

Published: August 20, 2012 (5015 days ago)

Last Modified: April 29, 2026

Vendor: HPE

Source: NVD

Description

hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838.

CWE

CWE-255

Affected Products

hp san\/iq

References

🔗 www.exploit-db.com 🔗 www.exploit-db.com 🔗 www.kb.cert.org 🔗 www.exploit-db.com 🔗 www.exploit-db.com

CVE-2012-4362

Vulnerability Report

Description

CWE

Affected Products

References