Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2021-1499

CWE-306 — Missing Authentication7 documents7 sources

Severity

5.3MEDIUM

EPSS

92.9%

top 0.23%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Cisco Hyperflex HX Data Platform Cisco Cisco Hyperflex HX Data Platform

Timeline

PublishedMay 6

Latest updateMay 24

Description

A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could allow an unauthenticated, remote attacker to upload files to an affected device. This vulnerability is due to missing authentication for the upload function. An attacker could exploit this vulnerability by sending a specific HTTP request to an affected device. A successful exploit could allow the attacker to upload files to the affected device with the permissions of the tomcat8 user.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

▶NVDcisco/hyperflex_hx_data_platform4.5 — 4.5\(2a\)+1

▶CVEListV5cisco/cisco_hyperflex_hx_data_platformn/a

🔴Vulnerability Details

GHSA

GHSA-389x-22j4-jr37: A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could allow an unauthenticated, remote attacker to upload fi↗2022-05-24

▶

CVEList

Cisco HyperFlex HX Data Platform File Upload Vulnerability↗2021-05-06

▶

💥Exploits & PoCs

Metasploit

Cisco HyperFlex HX Data Platform unauthenticated file upload to RCE (CVE-2021-1499)↗

▶

Nuclei

Cisco HyperFlex HX Data Platform - Arbitrary File Upload

▶

🔍Detection Rules

Suricata

ET EXPLOIT Cisco HyperFlex HX Data Platform Pre-Auth RCE Inbound (CVE-2021-1499)↗2021-09-07

▶

📋Vendor Advisories

Cisco

Cisco HyperFlex HX Data Platform File Upload Vulnerability↗2021-05-05

▶