CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: Nov 17, 2021
High
CISA KEVCVE-2021-1498
Cisco—HyperFlex HX
Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the tomcat8 user.
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2021-1498
Vulnerability Overview
- Severity
- High
- CISA KEV
- Yes
- Ransomware
- Unknown
- Published
- Nov 3, 2021
- KEV Added
- Nov 3, 2021
- Due Date
- Nov 17, 2021
- Related Articles
- 0
Vendor
Cisco
HyperFlex HX