CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-26576
https://notcve.org/view.php?id=CVE-2021-26576
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a command injection vulnerability in libifc.so uploadsshkey function. El firmware de Baseboard Management Controller (BMC) en HPE Apollo 70 System, anterior a versión 3.0.14.0, presenta una vulnerabilidad de inyección de comandos en la función uploadsshkey de libifc.so • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04080en_us • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-26574
https://notcve.org/view.php?id=CVE-2021-26574
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a path traversal vulnerability in libifc.so webdeletevideofile function. El firmware de Baseboard Management Controller (BMC) en HPE Apollo 70 System versiones anteriores a 3.0.14.0, presenta una vulnerabilidad de salto de ruta en la función webdeletevideofile de libifc.so • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04080en_us • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-26577
https://notcve.org/view.php?id=CVE-2021-26577
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so uploadsshkey function. El firmware de Baseboard Management Controller (BMC) en HPE Apollo 70 System versiones anteriores a 3.0.14.0, presenta un desbordamiento de búfer local en la función uploadsshkey de libifc.so • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04080en_us • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-26575
https://notcve.org/view.php?id=CVE-2021-26575
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a path traversal vulnerability in libifc.so webdeletesolvideofile function. El firmware de Baseboard Management Controller (BMC) en HPE Apollo 70 System versiones anteriores a 3.0.14.0, presenta una vulnerabilidad de salto de ruta en la función webdeletesolvideofile de libifc.so • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04080en_us • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-26573
https://notcve.org/view.php?id=CVE-2021-26573
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webgeneratesslcfg function. El firmware de Baseboard Management Controller (BMC) en HPE Apollo 70 System versiones anteriores a 3.0.14.0, presenta un desbordamiento de búfer local en la función webgeneratesslcfg de libifc.so • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04080en_us • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •