CVE-2021-1498: Cisco HyperFlex HX Data Platform Command Injection

Cisco HyperFlex HX Data Platform Command Injection Vulnerability. Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the tomcat8 user.

• CISA KEV-listed (remediation due 2021-11-17)
• EPSS 94.2% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions