CVE-2010-2705
CVE-2010-2705 is a medium-severity vulnerability in Hp Procurve Switch Software with a CVSS 2.0 base score of 6.1. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: Medium (CVSS 2.0 base score 6.1)
- EPSS exploit prediction: 1% (58th percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Hp Procurve Switch Software
- Published:
- Last modified:
Description
Unspecified vulnerability on the HP ProCurve 1800-24G switch with software PB.03.02 and earlier, and the ProCurve 1800-8G switch with software PA.03.02 and earlier, when SNMP is enabled, allows remote attackers to obtain sensitive information via unknown vectors.
Frequently asked questions
- What is CVE-2010-2705?
- Unspecified vulnerability on the HP ProCurve 1800-24G switch with software PB.03.02 and earlier, and the ProCurve 1800-8G switch with software PA.03.02 and earlier, when SNMP is enabled, allows remote attackers to obtain sensitive information via unknown vectors.
- How severe is CVE-2010-2705?
- CVE-2010-2705 has a CVSS 2.0 base score of 6.1, rated medium severity.
- Is CVE-2010-2705 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 1% (58th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2010-2705?
- CVE-2010-2705 primarily affects Hp Procurve Switch Software. In total, 25 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2010-2705?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2010-2705 published?
- CVE-2010-2705 was published on 2010-08-09 and last updated on 2026-06-16.
References
- http://secunia.com/advisories/40867
- https://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02436028
Affected products (25)
- cpe:2.3:o:hp:procurve_switch_software:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.02.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.02.02:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.02.03:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.02.04:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.02.05:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.02.06:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.02.07:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.02.08:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.02.09:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.03.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pb.03.01:*:*:*:*:*:*:*
- cpe:2.3:h:hp:procurve_switch_1800-24g:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.02.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.02.02:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.02.03:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.02.04:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.02.05:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.02.06:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.02.07:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.02.08:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.02.09:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.03.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:procurve_switch_software:pa.03.01:*:*:*:*:*:*:*
- cpe:2.3:h:hp:procurve_switch_1800-8g:*:*:*:*:*:*:*:*
More vulnerabilities in Hp Procurve Switch Software
- CVE-2010-2707 — High (CVSS 8.3): Unspecified vulnerability on the HP ProCurve 2626 and 2650 switches before H.10.80 allows remote attackers to obtain…
- CVE-2012-5216 — Medium (CVSS 6.8): Cross-site request forgery (CSRF) vulnerability on HP ProCurve 1700-8 (aka J9079A) switches with software before…
- CVE-2010-2708 — Medium (CVSS 6.1): Unspecified vulnerability on the HP ProCurve 2610 switch before R.11.22, when DHCP is enabled, allows remote attackers…
- CVE-2010-2706 — Medium (CVSS 6.1): Unspecified vulnerability in the In-band Agent on the HP ProCurve 2610 switch before R.11.30 allows remote attackers to…