CVE-2021-29212: Hewlett Packard Enterprise iLO Amplifier Pack backup Directory Traversal Remote Code Execution Vulnerability
First published: Mon Nov 01 2021(Updated: )
A remote unauthenticated directory traversal security vulnerability has been identified in HPE iLO Amplifier Pack versions 1.80, 1.81, 1.90 and 1.95. The vulnerability could be remotely exploited to allow an unauthenticated user to run arbitrary code leading complete impact to confidentiality, integrity, and availability of the iLO Amplifier Pack appliance.
Credit: security-alert@hpe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Hp Ilo Amplifier Pack | =1.80 | |
| Hp Ilo Amplifier Pack | =1.81 | |
| Hp Ilo Amplifier Pack | =1.90 | |
| Hp Ilo Amplifier Pack | =1.95 | |
| Hewlett Packard Enterprise iLO Amplifier Pack |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/type
- collector/nvd-index
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/weakness
- agent/title
- agent/references
- agent/tags
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-21-1278
- alias/ZDI-CAN-14056
- alias/CVE-2021-29212
- vendor/hp
- canonical/hp ilo amplifier pack
- version/hp ilo amplifier pack/1.80
- version/hp ilo amplifier pack/1.81
- version/hp ilo amplifier pack/1.90
- version/hp ilo amplifier pack/1.95
- vendor/hewlett packard enterprise
- canonical/hewlett packard enterprise ilo amplifier pack