CVE-2021-29220
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple buffer overflow security vulnerabilities have been identified in HPE iLO Amplifier Pack version(s): Prior to 2.12. These vulnerabilities could be exploited by a highly privileged user to remotely execute code that could lead to a loss of confidentiality, integrity, and availability. HPE has provided a software update to resolve this vulnerability in HPE iLO Amplifier Pack.
Se han identificado múltiples vulnerabilidades de seguridad de desbordamiento del búfer en HPE iLO Amplifier Pack versiones: Anteriores a 2.12. Estas vulnerabilidades podrían ser explotadas por un usuario con altos privilegios para ejecutar remotamente código que podría conllevar a una pérdida de confidencialidad, integridad y disponibilidad. HPE ha proporcionado una actualización de software para resolver esta vulnerabilidad en HPE iLO Amplifier Pack
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-03-25 CVE Reserved
- 2022-02-24 CVE Published
- 2023-09-17 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Hp Search vendor "Hp" | Ilo Amplifier Pack Search vendor "Hp" for product "Ilo Amplifier Pack" | < 2.12 Search vendor "Hp" for product "Ilo Amplifier Pack" and version " < 2.12" | - |
Affected
| ||||||