Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-42774

Опубликовано: 12 нояб. 2021
Источник: nvd
CVSS3: 9.8
CVSS2: 7.5
EPSS Низкий

Описание

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a buffer overflow vulnerability in the remote firmware download feature that could allow remote unauthenticated users to perform various attacks. In non-secure mode, the user is unauthenticated.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:broadcom:emulex_hba_manager:*:*:*:*:*:*:*:*
Версия от 11.0.0 (включая) до 11.4.425.0 (исключая)
cpe:2.3:a:broadcom:emulex_hba_manager:*:*:*:*:*:*:*:*
Версия от 12.0.0 (включая) до 12.8.542.31 (исключая)

EPSS

Процентиль: 78%
0.01114
Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-120

Связанные уязвимости

github логотип

GHSA-mr9f-f2w7-mmmf

github
больше 3 лет назад

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a buffer overflow vulnerability in the remote firmware download feature that could allow remote unauthenticated users to perform various attacks. In non-secure mode, the user is unauthenticated.

EPSS

Процентиль: 78%
0.01114
Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-120