- Community Home
- >
- Storage
- >
- Data Protection and Retention
- >
- StoreEver Tape Storage
- >
- Re: HP MSL 2024 G3 Series Writeable SNMP Informati...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-13-2019 06:28 AM
09-13-2019 06:28 AM
HP MSL 2024 G3 Series Writeable SNMP Information vulnerability
Hello,
how to fix writeable snmp information
Best regards,
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-15-2019 12:57 AM
09-15-2019 12:57 AM
Re: HP MSL 2024 G3 Series Writeable SNMP Information vulnerability
When a new industry-wide security vulnerability is released, HPE investigates its product line to determine the impact. For impacted products, Security Bulletins will be published. These bulletins will contain impacted product versions and the resolution (patch, upgrade, or configuration change).
https://www.hpe.com/in/en/services/security-vulnerability.html
However, do not see any such security vulnerability addressed for this HPE MSL 2024.
Request you to share the cve details regarding this vulnerability.
The severity of this vulnerability
Which application had detected this vulnerablity and the fix recommended?
To address this issue:
As SNMP is identified as the source, this can be impacted , when SNMP is enabled.
You can implement this work around - Disable SNMP from the RMI console.
* Log in to the RMI webconsole of the MSL.
* Use the Configuration > Network Management page to enable and configure SNMP (Simple Network Management Protocol), which allows applications such as HPE Systems Insight Manager to manage the device. The device supports both SNMP configuration and SNMP traps. SNMP can only be configured with the RMI; it cannot be configured with the OCP.
* You can change: • SNMP Enabled — Uncheck this option.
NOTE: When checked, the device can be managed by computers listed in the SNMP Target IP Addresses field.
If you feel this was helpful please click the KUDOS! thumb below!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-24-2019 04:25 AM
09-24-2019 04:25 AM
Re: HP MSL 2024 G3 Series Writeable SNMP Information vulnerability
Hi,
Should we proceed (SNMP Disable) to know that the traps will no longer be sent to the destination snmp?