CVE-2021-26570: Buffer Overflow
First published: Mon Feb 08 2021(Updated: )
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webifc_setadconfig function.
Credit: security-alert@hpe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Hpe Baseboard Management Controller | <3.0.14.0 | |
| HPE Apollo 70 System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2021-26570.
What is the severity level of CVE-2021-26570?
The severity level of CVE-2021-26570 is high with a score of 7.8.
What is the affected software for CVE-2021-26570?
The affected software is HPE Apollo 70 System with Baseboard Management Controller (BMC) firmware versions up to and excluding 3.0.14.0.
What is the CWE ID for this vulnerability?
The CWE ID for this vulnerability is CWE-119 and CWE-120.
How can I fix CVE-2021-26570?
To fix CVE-2021-26570, update the BMC firmware to version 3.0.14.0 or later.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/hpe
- canonical/hpe baseboard management controller
- canonical/hpe apollo 70 system