CVE-2021-29219

EUVD-2021-15858
A potential local buffer overflow vulnerability has been identified in HPE FlexNetwork 5130 EL Switch Series version: Prior to 5130_EI_7.10.R3507P02. HPE has made the following software update to resolve the vulnerability in HPE FlexNetwork 5130 EL Switch Series version 5130_EL_7.10.R3507P02.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
Affected Products (NVD)
VendorProductVersion
hpeflexnetwork_5130_jg932a_firmware
𝑥
< 5130_ei_7.10.r3507p02
hpeflexnetwork_5130_jg933a_firmware
𝑥
< 5130_ei_7.10.r3507p02
hpeflexnetwork_5130_jg934a_firmware
𝑥
< 5130_ei_7.10.r3507p02
hpeflexnetwork_5130_jg936a_firmware
𝑥
< 5130_ei_7.10.r3507p02
hpeflexnetwork_5130_jg937a_firmware
𝑥
< 5130_ei_7.10.r3507p02
hpeflexnetwork_5130_jg940a_firmware
𝑥
< 5130_ei_7.10.r3507p02
hpeflexnetwork_5130_jg941a_firmware
𝑥
< 5130_ei_7.10.r3507p02
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbnw04234en_us
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbnw04234en_us