CVE-2023-657323.01.2024, 18:15HPE OneView may have a missing passphrase during restore.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST5.5 MEDIUMLOCALLOWNONECVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NhpeCNA5.5 MEDIUMLOCALLOWNONECVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NCVEADP------CISA-ADPADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 22%VendorProductVersionhponeview𝑥< 8.70𝑥= Vulnerable software versionsCommon Weakness EnumerationCWE-522 - Insufficiently Protected CredentialsThe product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.Referenceshttps://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbgn04586en_ushttps://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbgn04586en_us