Vulnerabilities

CVE-2021-26570

March 18, 2021

The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webifc_setadconfig function.

Summary:

The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webifc_setadconfig function.

Reference Links(if available):

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04080en_us

https://www.zerodayinitiative.com/advisories/ZDI-21-340/

CVSS Score (if available)

v2: / MEDIUMAV:L/AC:L/Au:N/C:C/I:C/A:C

v3: / HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Links to Exploits(if available)

Tags: CVE, CVE-2021-26570, MISC, Vendor Advisory, vulnerability

CVE-2021-26570

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

Palo Alto Products Remote Code Execution Vulnerability

Le Slip Français – 1,495,127 breached accounts

CISA: Juniper Releases Security Bulletin for Multiple Juniper Products

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA: Citrix Releases Security Updates for XenServer and Citrix Hypervisor

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

You may have missed

Palo Alto Products Remote Code Execution Vulnerability

Le Slip Français – 1,495,127 breached accounts

CISA: Juniper Releases Security Bulletin for Multiple Juniper Products

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA: Citrix Releases Security Updates for XenServer and Citrix Hypervisor