How severe is CVE-2020-7205?

Medium severity. CVSS v3 base score is 6.7 out of 10.

Vulnerability in Hpe Apollo_2000_gen10_plus_system

CVE-2020-7205

A potential security vulnerability has been identified in HPE Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting ToolKit. The vulnerability could be locally exploited to allow arbitrary code execution during the boot pr…

EPSS: 0.004 (32.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.7 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.

Affected products

Hpe Apollo_2000_gen10_plus_system
Hpe Apollo_4200_gen10_server
Hpe Apollo_4200_gen9_server
Hpe Apollo_4510_gen10_system
Hpe Apollo_4520_chassis
Hpe Apollo_6500_gen10_system
Hpe Cloudline_cl2100_gen10_server
Hpe Cloudline_cl2200_gen10_server
Hpe Cloudline_cl2600_gen10_server
Hpe Cloudline_cl2800_gen10_server

References

security-alert@hpe.com (x_refsource_MISC, Vendor Advisory)

Frequently asked questions

What is CVE-2020-7205?: CVE-2020-7205 is a medium-severity vulnerability in Hpe Apollo_2000_gen10_plus_system. CVSS score: 6.7/10. Published 2020-07-30.
How severe is CVE-2020-7205?: Medium severity. CVSS v3 base score is 6.7 out of 10.