Vulnerabilities > HPE > Baseboard Management Controller

DATE CVE VULNERABILITY TITLE RISK
2021-02-08 CVE-2021-26576 Command Injection vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a command injection vulnerability in libifc.so uploadsshkey function.
local
low complexity
hpe CWE-77
7.8
2021-02-08 CVE-2021-26577 Classic Buffer Overflow vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so uploadsshkey function.
local
low complexity
hpe CWE-120
7.8
2021-02-08 CVE-2021-26575 Path Traversal vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a path traversal vulnerability in libifc.so webdeletesolvideofile function.
local
low complexity
hpe CWE-22
7.8
2021-02-08 CVE-2021-26574 Path Traversal vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a path traversal vulnerability in libifc.so webdeletevideofile function.
local
low complexity
hpe CWE-22
7.8
2021-02-08 CVE-2021-26573 Classic Buffer Overflow vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webgeneratesslcfg function.
local
low complexity
hpe CWE-120
7.8
2021-02-08 CVE-2021-25172 Command Injection vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a command injection vulnerability in libifc.so websetdefaultlangcfg function.
local
low complexity
hpe CWE-77
7.8
2021-02-08 CVE-2021-26572 Classic Buffer Overflow vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webgetactivexcfg function.
local
low complexity
hpe CWE-120
7.8
2021-02-08 CVE-2021-26571 Classic Buffer Overflow vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webgetactivexcfg function.
local
low complexity
hpe CWE-120
7.8
2021-02-08 CVE-2021-26570 Classic Buffer Overflow vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webifc_setadconfig function.
local
low complexity
hpe CWE-120
7.8
2021-02-08 CVE-2021-25171 Classic Buffer Overflow vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so websetlicensecfg function.
local
low complexity
hpe CWE-120
7.8