What is CVE-2020-3389?

CVE-2020-3389 is a medium-severity vulnerability in Cisco Hyperflex Hx Data Platform, classified under Cryptographic Issues. CVSS score: 4.4/10. Published 2020-08-26.

How severe is CVE-2020-3389?

Medium severity. CVSS v3 base score is 4.4 out of 10.

Vulnerability in Cisco Hyperflex Hx Data Platform

CVE-2020-3389

A vulnerability in the installation component of Cisco Hyperflex HX-Series Software could allow an authenticated, local attacker to retrieve the password that was configured at installation on an affected device. The vulnerability exists b…

Vulnerability class: POODLE (CVE-2014-3566)

EPSS: 0.000 (11.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.4 (Medium). Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N.

Affected products

Cisco Hyperflex Hx Data Platform — versions n/a

Weakness classification (CWE)

CWE-310 — Cryptographic Issues

References

20200819 Cisco Hyperflex HX-Series Software Weak Storage Vulnerability (vendor-advisory, x_refsource_CISCO)

Frequently asked questions

What is CVE-2020-3389?: CVE-2020-3389 is a medium-severity vulnerability in Cisco Hyperflex Hx Data Platform, classified under Cryptographic Issues. CVSS score: 4.4/10. Published 2020-08-26.
How severe is CVE-2020-3389?: Medium severity. CVSS v3 base score is 4.4 out of 10.