CVE-2021-26586

Опубликовано: 05 авг. 2021

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

A potential security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could be remotely exploited to disclose sensitive information. HPE has made software updates available to resolve the vulnerability in the HPE Edgeline Infrastructure Manager (EIM).

Ссылки

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04180en_us
Vendor Advisory
https://www.tenable.com/security/research/tra-2021-33
Exploit
Third Party Advisory
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04180en_us
Vendor Advisory
https://www.tenable.com/security/research/tra-2021-33
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hp:edgeline_infrastructure_management:*:*:*:*:*:*:*:*

Версия до 1.24 (исключая)

EPSS

Процентиль: 53%

0.00305

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-q8jp-2x27-hrjq

github

больше 3 лет назад