Lucene search
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.HPE_EIM_CVE-2021-29203.NBINHistoryJun 04, 2021 - 12:00 a.m.
HPE Edgeline Infrastructure Manager Authentication Bypass (HPESBGN04124)
2021-06-0400:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
The HPE Edgeline Infrastructure Manager running on the remote host Manager is affected by an authentication bypass vulnerability due to improper access control to an URL that resets the Administrator password. An unauthenticated, remote attacker can exploit this, via specially crafted HTTP messages, to reset the Administrator and root passwords. The attacker can then SSH to the remote host as root.
Binary data hpe_eim_cve-2021-29203.nbin| Vendor | Product | Version | CPE |
|---|---|---|---|
| hp | edgeline_infrastructure_manager | cpe:/a:hp:edgeline_infrastructure_manager |
Related
checkpoint_advisories
checkpoint_advisories
HPE Edgeline Infrastructure Manager Authentication Bypass (CVE-2021-29203)
2021-05-31 00:00:00
prion
prion
Authentication flaw
2021-05-06 21:15:00
cve
cve
CVE-2021-29203
2021-05-06 21:15:00
nuclei
nuclei
HPE Edgeline Infrastructure Manager <1.22 - Authentication Bypass
2021-06-26 08:10:30
threatpost
threatpost
Hewlett Packard Enterprise Plugs Critical Bug in Edge Platform Tool
2021-05-03 18:22:23
openvas
openvas
Directory Scanner
2005-11-03 00:00:00
Related for HPE_EIM_CVE-2021-29203.NBIN