CVE-2021-1497
Cisco HyperFlex HX Command Injection Vulnerabilities
In short
The web interface of Cisco HyperFlex HX systems contains a flaw that allows attackers to inject and execute arbitrary commands on the device without needing to log in. This is critical because it gives complete control over the infrastructure to anyone who finds the vulnerable system online.
Technical detail
An unauthenticated remote attacker can exploit command injection vulnerabilities (CWE-78) in the web-based management interface of Cisco HyperFlex HX to execute arbitrary operating system commands. The vulnerability requires network access to the management interface but no authentication, allowing full system compromise with CVSS 9.8 severity.
Summary generated and translated by AI from the official description.
Multiple vulnerabilities in the web-based management interface of Cisco HyperFlex HX could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Cisco · Cisco HyperFlex HX Data Platformpublic PoCs found — 2
githubgithub.com/34zY/APT-Backpack★ 3cve_referencepacketstormsecurity.com/files/162976/Cisco-HyperFlex-HX-Data-Platform-Command-Execution.htmlunverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →