CVE-2021-1497

Multiple vulnerabilities in the web-based management interface of Cisco HyperFlex HX could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

Severity	CRITICAL
CVSS	9.8
EPSS	-
CWE	CWE-78
KEV	KEV (added 4 years ago)
Published	5 years ago
Modified	6 months ago

Public Affected Products

Product	Advisory	Evidence
Cisco HyperFlex HX Data Platform	cisco-sa-hyperflex-rce-TjjNrkpR	Cisco CSAF · structured affected