CVE-2021-26574

2021-02-0819:51:01

hpe

www.cve.org

bmc firmware

hpe apollo 70 system

path traversal

libifc.so

webdeletevideofile function

cve-2021-26574

AI Score

7.8

Confidence

High

EPSS

Percentile

9.9%

JSON

The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a path traversal vulnerability in libifc.so webdeletevideofile function.

CNA Affected

[
  {
    "product": "HPE Apollo 70 System",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Prior to Version 3.0.14.0"
      }
    ]
  }
]

References

support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04080en_us