Remote Information Disclosure in HPE Edgeline Infrastructure Manager
CVE-2021-26586

7.5HIGH

Key Information:

Vendor: HP
Status: HP Edgeline Infrastructure Management Software
Vendor: CVE Published:; 5 August 2021

Summary

A security vulnerability has been identified in HPE Edgeline Infrastructure Manager, potentially allowing remote attackers to disclose sensitive information. HPE has provided software updates to mitigate this issue, urging users to upgrade their systems to maintain security. For further details and remediation steps, refer to HPE's support documentation.

Affected Version(s)

HPE Edgeline Infrastructure Management Software Prior to 1.24

References

https://support.hpe.com/hpsc/doc/public/display?docLocale...

x_refsource_MISC

https://www.tenable.com/security/research/tra-2021-33

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 5, 2021
Vulnerability Reserved
Feb 2, 2021