CVE-2021-29218

A local unquoted search path security vulnerability has been identified in HPE Agentless Management Service for Windows version(s): Prior to 1.44.0.0, 10.96.0.0. This vulnerability could be exploited locally by a user with high privileges to execute malware that may lead to a loss of confidentiality, integrity, and availability. HPE has provided software updates to resolve the vulnerability in HPE Agentless Management Service for Windows.

CVSS v3 6.7 MEDIUM
CVSS v2.0 4.6 MEDIUM

6.7^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

4.6^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04233en_us	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:hpe:agentless_management:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:x64:*

Configuration 2 (hide)

AND

cpe:2.3:a:hpe:proliant_agentless_management:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:hpe:apollo_20:-:::::::*
	cpe:2.3:h:hpe:apollo_2000_gen_10_plus:-:::::::*
	cpe:2.3:h:hpe:apollo_6500:-:::::::*
	cpe:2.3:h:hpe:apollo_6500_gen10_plus:-:::::::*
	cpe:2.3:h:hpe:apollo_80:-:::::::*
	cpe:2.3:h:hpe:proliant_dl:-:::::::*
	cpe:2.3:h:hpe:proliant_ml:-:::::::*
	cpe:2.3:h:hpe:synergy_480_gen9:-:::::::*
	cpe:2.3:h:hpe:synergy_620_gen9:-:::::::*
	cpe:2.3:h:hpe:synergy_660_gen9:-:::::::*
	cpe:2.3:h:hpe:synergy_680_gen9:-:::::::*

History

No history.

Information

Published : 2022-02-04 23:15

Updated : 2024-02-28 18:48

NVD link : CVE-2021-29218

Mitre link : CVE-2021-29218

CVE.ORG link : CVE-2021-29218

JSON object : View

Products Affected

hpe

synergy_620_gen9
synergy_680_gen9
synergy_660_gen9
apollo_80
proliant_agentless_management
apollo_20
apollo_2000_gen_10_plus
apollo_6500_gen10_plus
proliant_ml
apollo_6500
synergy_480_gen9
agentless_management
proliant_dl

microsoft

windows

CWE

CWE-428

Unquoted Search Path or Element

{"id": "CVE-2021-29218", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.8}]}, "published": "2022-02-04T23:15:11.407", "references": [{"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04233en_us", "tags": ["Vendor Advisory"], "source": "security-alert@hpe.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-428"}]}], "descriptions": [{"lang": "en", "value": "A local unquoted search path security vulnerability has been identified in HPE Agentless Management Service for Windows version(s): Prior to 1.44.0.0, 10.96.0.0. This vulnerability could be exploited locally by a user with high privileges to execute malware that may lead to a loss of confidentiality, integrity, and availability. HPE has provided software updates to resolve the vulnerability in HPE Agentless Management Service for Windows."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad de seguridad en la ruta de b\u00fasqueda local no citada en HPE Agentless Management Service para Windows versiones: Anteriores a 1.44.0.0, 10.96.0.0. Esta vulnerabilidad podr\u00eda ser explotada localmente por un usuario con altos privilegios para ejecutar malware que puede conllevar a una p\u00e9rdida de confidencialidad, integridad y disponibilidad. HPE ha proporcionado actualizaciones de software para resolver la vulnerabilidad en HPE Agentless Management Service para Windows"}], "lastModified": "2022-02-09T16:51:09.757", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hpe:agentless_management:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F51AF901-3141-438F-AFA6-2BB6A1517D96", "versionEndExcluding": "1.44.0.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:x64:*", "vulnerable": false, "matchCriteriaId": "82132539-3C34-4B63-BE2A-F51077D8BC5A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hpe:proliant_agentless_management:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D67AC01D-71F2-4814-BFA2-28DD526A4A6E", "versionEndExcluding": "10.96.0.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hpe:apollo_20:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CCF1FAB2-B69D-403F-9CE3-1F08000168ED"}, {"criteria": "cpe:2.3:h:hpe:apollo_2000_gen_10_plus:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C3696F8B-6433-4E1E-83F1-0F385F7AE819"}, {"criteria": "cpe:2.3:h:hpe:apollo_6500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BE45FAEB-6FFB-418F-BD19-C8859B92B399"}, {"criteria": "cpe:2.3:h:hpe:apollo_6500_gen10_plus:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "970779A7-00C5-4A06-89B1-717418934EAA"}, {"criteria": "cpe:2.3:h:hpe:apollo_80:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FB96A78D-9DEE-4156-B6B0-3C64BBA2A7AA"}, {"criteria": "cpe:2.3:h:hpe:proliant_dl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "00820B28-509B-4D6E-8F7F-FC793198FA5F"}, {"criteria": "cpe:2.3:h:hpe:proliant_ml:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8B7DAFFA-24F6-4E3E-9152-668029351953"}, {"criteria": "cpe:2.3:h:hpe:synergy_480_gen9:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "86B14DA3-004D-423F-ACF6-CA8045D20DB6"}, {"criteria": "cpe:2.3:h:hpe:synergy_620_gen9:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1B597367-C014-40FD-9BBB-CBE6A6D164EE"}, {"criteria": "cpe:2.3:h:hpe:synergy_660_gen9:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "81F08AE0-095E-4A0B-BE4E-5BF1CFAA1920"}, {"criteria": "cpe:2.3:h:hpe:synergy_680_gen9:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "467A5F6C-5E1E-443E-9D11-8F2F094BAA2E"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "security-alert@hpe.com"}