CVSS: 10.0EPSS: 94%CPEs: 1EXPL: 1CVE-2021-29203
https://notcve.org/view.php?id=CVE-2021-29203
A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software, prior to version 1.22. The vulnerability could be remotely exploited to bypass remote authentication leading to execution of arbitrary commands, gaining privileged access, causing denial of service, and changing the configuration. HPE has released a software update to resolve the vulnerability in the HPE Edgeline Infrastructure Manager. Se ha identificado una vulnerabilidad de seguridad en HPE Edgeline Infrastructure Manager, también se conoce como software de gestión de infraestructura HPE Edgeline, versiones anteriores a 1.22. La vulnerabilidad podría ser explotada remotamente para omitir la autenticación remota que conlleva a una ejecución de comandos arbitrarios, consiguiendo acceso privilegiado, causando una denegación de servicio y cambiando la configuración. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04124en_us https://www.tenable.com/security/research/tra-2021-15 • CWE-306: Missing Authentication for Critical Function •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2020-7199
https://notcve.org/view.php?id=CVE-2020-7199
A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could be remotely exploited to bypass remote authentication leading to execution of arbitrary commands, gaining privileged access, causing denial of service, and changing the configuration. Se ha identificado una vulnerabilidad de seguridad en HPE Edgeline Infrastructure Manager, también se conoce como HPE Edgeline Infrastructure Management Software. La vulnerabilidad podría ser explotada remotamente para omitir la autenticación remota conllevando a una ejecución de comandos arbitrarios, consiguiendo un acceso privilegiado, causando una denegación de servicio y cambiando la configuración • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04063en_us • CWE-287: Improper Authentication •