Local Buffer Overflow Vulnerability in HPE Cloudline Servers
CVE-2021-25136
Key Information:
- Vendor
HP
- Vendor
- CVE Published:
- 29 January 2021
What is CVE-2021-25136?
The Baseboard Management Controller (BMC) firmware in several HPE Cloudline servers is susceptible to a local buffer overflow vulnerability. This issue arises in the spx_restservice setsolvideoremotestorage_func function, potentially allowing an attacker to execute arbitrary code or cause disruptions in server operations. Organizations using affected server models should assess their systems and apply recommended patches to ensure protection against potential exploits.
Affected Version(s)
HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server Version. 1.09.0.0
HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server Version 1.07.0.0
HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server Version 1.10.0.0