Remote Code Execution Vulnerability in HPE iLO Amplifier Pack
CVE-2021-26583

9.8CRITICAL

Key Information:

Vendor: HP
Status: Ilo Amplifier Pack
Vendor: CVE Published:; 10 May 2021

What is CVE-2021-26583?

A security vulnerability has been identified in HPE iLO Amplifier Pack that could potentially allow remote attackers to execute arbitrary code. This vulnerability can be exploited over the network, enabling unauthorized access and control over affected systems. It is crucial for users to apply the latest security patches to mitigate the risks associated with this vulnerability.

Affected Version(s)

iLO Amplifier Pack Prior to Version 1.90

References

https://support.hpe.com/hpsc/doc/public/display?docLocale...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 10, 2021
Vulnerability Reserved
Feb 2, 2021