Buffer Overflow Vulnerability in HPE Moonshot Provisioning Manager
CVE-2021-25139
9.8CRITICAL
What is CVE-2021-25139?
A security vulnerability in the HPE Moonshot Provisioning Manager v1.20 may allow remote unauthenticated users to exploit a stack-based buffer overflow via the khuploadfile.cgi
CGI ELF. This flaw can potentially lead to remote code execution, denial of service, and compromise of system integrity. HPE recommends discontinuing the use of this application, which is no longer supported or available for download.
Affected Version(s)
HPE Moonshot Provisioning Manager v1.20