The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a command injection vulnerability in libifc.so websetdefaultlangcfg function.
References
Link | Resource |
---|---|
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04080en_us | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2021-02-08 20:15
Updated : 2024-02-28 18:08
NVD link : CVE-2021-25172
Mitre link : CVE-2021-25172
CVE.ORG link : CVE-2021-25172
JSON object : View
Products Affected
hpe
- apollo_70_system
- baseboard_management_controller
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')