CVE-2021-25172

The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a command injection vulnerability in libifc.so websetdefaultlangcfg function.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:hpe:baseboard_management_controller:*:*:*:*:*:*:*:*
cpe:2.3:h:hpe:apollo_70_system:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-02-08 20:15

Updated : 2024-02-28 18:08


NVD link : CVE-2021-25172

Mitre link : CVE-2021-25172

CVE.ORG link : CVE-2021-25172


JSON object : View

Products Affected

hpe

  • apollo_70_system
  • baseboard_management_controller
CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')