VDB
CVE-2021-45485
CVE-2021-45485
PUBLISHED
CVSS 8.699999809265137 HIGH
In HPE Fabric OS für HPE Fibre Channel und SAN Switches existieren mehrere Schwachstellen. Diese werden nicht einzeln im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, Informationen offenzulegen, oder einen Denial of Service Zustand herbeizuführen.
EPSS 0.87% · 75.6th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.87%
75.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amazon | Amazon Linux 2 | |
| HPE | HPE Switch SAN | |
| Oracle | Oracle Linux | |
| HPE | HPE Switch Fibre Channel | |
| IBM | IBM MQ Appliance | |
| IBM | IBM Spectrum Protect 8.1 | |
| IBM | IBM Power Hardware Management Console | |
| IBM | IBM Storwize | |
| Broadcom | Broadcom Brocade Switch | |
| IBM | IBM FlashSystem | |
| SUSE | SUSE Linux | |
| Red Hat | Red Hat OpenShift | |
| IBM | IBM Spectrum Protect 10.1 | |
| Ubuntu | Ubuntu Linux | |
| HPE | HPE Switch | |
| IBM | IBM SAN Volume Controller | |
| Red Hat | Red Hat Enterprise Linux | |
| IBM | IBM DataPower Gateway 10.5.0 |
Exploit Intelligence
- Satheesh575555/linux-4.19.72_CVE-2021-45485 (github-poc)
- Satheesh575555/linux-4.19.72_CVE-2021-45485 (github-poc)
- Satheesh575555/linux-4.19.72_CVE-2021-45485 (github-poc)
- Satheesh575555/linux-4.19.72_CVE-2021-45485 (github-poc)
- Satheesh575555/linux-4.19.72_CVE-2021-45485 (github-poc)
- Satheesh575555/linux-4.19.72_CVE-2021-45485 (github-poc)
- Satheesh575555/linux-4.19.72_CVE-2021-45485 (github-poc)
- https://sploitus.com/exploit?id=4A3B5C53-2CB2-5006-B0EC-6228432CF4CF (certbund)
- CVE-2022-2588.yara (github-yara)
- CVE-2022-2588.yara (github-yara)
…and 12 more exploits
Timeline
- Dec 25, 2021 CVE Published
- Dec 25, 2021 EPSS Score
- Feb 17, 2022 EPSS Score
- Apr 12, 2022 EPSS Score
- Jul 30, 2022 EPSS Score
- Sep 22, 2022 EPSS Score
- Nov 15, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 3, 2023 EPSS Score
- Apr 26, 2023 EPSS Score
- Jun 19, 2023 EPSS Score
- Aug 12, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-0232.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0232 advisory
- https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbst04494en_us advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-45485 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-45486 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/009994.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010003.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010005.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010004.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010008.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010029.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010060.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010079.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010080.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010169.html advisory
- https://linux.oracle.com/errata/ELSA-2022-1988.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010214.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010210.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010213.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010217.html advisory
…and 38 more