VU#768399: HPE SiteScope contains multiple vulnerabilities

Vulnerability Note VU#768399 HPE SiteScope contains multiple vulnerabilities Original Release date: 13 Jun 2017 | Last revised: 29 Jun 2017 Overview HPE’s SiteScope is vulnerable to several cryptographic issues, insufficiently protected credentials, and missing authentication. Description HPE’s SiteScope is vulnerable to several vulnerabilities. The researcher reports that version 11.31.461 is affected; other versions may also be impacted. CERT/CC has not received further information on affected versions from HPE. CWE-306: Missing Authentication for Critical Function – CVE-2017-8952 Previously reported as ZDI-12-176…