SB2021050629 - Multiple vulnerabilities in Cisco HyperFlex HX
Published: May 6, 2021 Updated: August 25, 2021
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) OS Command Injection (CVE-ID: CVE-2021-1497)
The vulnerability allows a remote attacker to execute arbitrary shell commands on the target system.
The vulnerability exists due to improper input validation in the web-based management interface. A remote unauthenticated attacker can pass specially crafted data to the application and execute arbitrary OS commands on the target system as the root user.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Note, the vulnerability is being exploited in-the-wild by the Mirai botnet in August 2021.
2) OS Command Injection (CVE-ID: CVE-2021-1498)
The vulnerability allows a remote attacker to execute arbitrary shell commands on the target system.
The vulnerability exists due to improper input validation in the web-based management interface. A remote unauthenticated attacker can pass specially crafted data to the application and execute arbitrary OS commands on the target system as the tomcat8 user.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Note, the vulnerability is being exploited in-the-wild by the Mirai botnet in August 2021.
Remediation
Install update from vendor's website.