10
CVE-2021-26588
- EPSS 1.71%
- Published 11.10.2021 17:15:07
- Last modified 21.11.2024 05:56:32
- Source security-alert@hpe.com
- Teams watchlist Login
- Open Login
A potential security vulnerability has been identified in HPE 3PAR StoreServ, HPE Primera Storage and HPE Alletra 9000 Storage array firmware. An unauthenticated user could remotely exploit the low complexity issue to execute code as administrator. This vulnerability impacts completely the confidentiality, integrity, availability of the array. HPE has made the following software updates and mitigation information to resolve the vulnerability in 3PAR, Primera and Alletra 9000 firmware.
Data is provided by the National Vulnerability Database (NVD)
Hpe ≫ 3par Os Version3.3.1_mp5_p156
Hpe ≫ 3par Storeserv 10400 Version-
Hpe ≫ 3par Storeserv 10800 Version-
Hpe ≫ 3par Storeserv 20000 Version-
Hpe ≫ 3par Storeserv 7200c Version-
Hpe ≫ 3par Storeserv 7400c Version-
Hpe ≫ 3par Storeserv 7440c Version-
Hpe ≫ 3par Storeserv 8000 Version-
Hpe ≫ 3par Storeserv 9000 Version-
Hpe ≫ 3par Storeserv 10800 Version-
Hpe ≫ 3par Storeserv 20000 Version-
Hpe ≫ 3par Storeserv 7200c Version-
Hpe ≫ 3par Storeserv 7400c Version-
Hpe ≫ 3par Storeserv 7440c Version-
Hpe ≫ 3par Storeserv 8000 Version-
Hpe ≫ 3par Storeserv 9000 Version-
Hpe ≫ 3par Os Version3.3.1_mu1
Hpe ≫ 3par Storeserv 10400 Version-
Hpe ≫ 3par Storeserv 10800 Version-
Hpe ≫ 3par Storeserv 20000 Version-
Hpe ≫ 3par Storeserv 7200c Version-
Hpe ≫ 3par Storeserv 7400c Version-
Hpe ≫ 3par Storeserv 7440c Version-
Hpe ≫ 3par Storeserv 8000 Version-
Hpe ≫ 3par Storeserv 9000 Version-
Hpe ≫ 3par Storeserv 10800 Version-
Hpe ≫ 3par Storeserv 20000 Version-
Hpe ≫ 3par Storeserv 7200c Version-
Hpe ≫ 3par Storeserv 7400c Version-
Hpe ≫ 3par Storeserv 7440c Version-
Hpe ≫ 3par Storeserv 8000 Version-
Hpe ≫ 3par Storeserv 9000 Version-
Hpe ≫ 3par Os Version3.3.1_mu2_p157
Hpe ≫ 3par Storeserv 10400 Version-
Hpe ≫ 3par Storeserv 10800 Version-
Hpe ≫ 3par Storeserv 20000 Version-
Hpe ≫ 3par Storeserv 7200c Version-
Hpe ≫ 3par Storeserv 7400c Version-
Hpe ≫ 3par Storeserv 7440c Version-
Hpe ≫ 3par Storeserv 8000 Version-
Hpe ≫ 3par Storeserv 9000 Version-
Hpe ≫ 3par Storeserv 10800 Version-
Hpe ≫ 3par Storeserv 20000 Version-
Hpe ≫ 3par Storeserv 7200c Version-
Hpe ≫ 3par Storeserv 7400c Version-
Hpe ≫ 3par Storeserv 7440c Version-
Hpe ≫ 3par Storeserv 8000 Version-
Hpe ≫ 3par Storeserv 9000 Version-
Hpe ≫ 3par Os Version3.3.2_ga_p_01
Hpe ≫ 3par Storeserv 10400 Version-
Hpe ≫ 3par Storeserv 10800 Version-
Hpe ≫ 3par Storeserv 20000 Version-
Hpe ≫ 3par Storeserv 7200c Version-
Hpe ≫ 3par Storeserv 7400c Version-
Hpe ≫ 3par Storeserv 7440c Version-
Hpe ≫ 3par Storeserv 8000 Version-
Hpe ≫ 3par Storeserv 9000 Version-
Hpe ≫ 3par Storeserv 10800 Version-
Hpe ≫ 3par Storeserv 20000 Version-
Hpe ≫ 3par Storeserv 7200c Version-
Hpe ≫ 3par Storeserv 7400c Version-
Hpe ≫ 3par Storeserv 7440c Version-
Hpe ≫ 3par Storeserv 8000 Version-
Hpe ≫ 3par Storeserv 9000 Version-
Hpe ≫ Primera 630 Firmware Version >= 4.0.0 <= 4.3.3
Hpe ≫ Primera 650 Firmware Version >= 4.0.0 <= 4.3.3
Hpe ≫ Primera 670 Firmware Version >= 4.0.0 <= 4.3.3
Hpe ≫ Alletra 9060 Firmware Version >= 9.3.0 <= 9.4.0
Hpe ≫ Alletra 9080 Firmware Version >= 9.3.0 <= 9.4.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.71% | 0.806 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|