Key Information from the Screenshot Document Title: HPESBGN04124 rev.4 - HPE Edgeline Infrastructure Manager, Remote Authentication Bypass Document Type: Security Bulletin Potential Security Impact: Remote Authentication Bypass Source: Hewlett Packard Enterprise, HPE Product Security Response Team Vulnerability Summary A security vulnerability exists in the HPE Edgeline Infrastructure Manager, which can be exploited remotely to bypass authentication. This leads to the execution of arbitrary commands and gaining privileged access, causing denial of service and configuration changes. References CVE: CVE-2021-29203 TRA: TRA-2021-15 Supported Software Versions (Only impacted versions are listed) Prior to version 1.23 CVSS Severity V3 Base Score: 9.8 V2 Base Score: 10.0 CVSS Vector (V3): CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Resolution Update to HPE Edgeline Infrastructure Manager version 1.23 or later. Background Version 1.22 was an incomplete fix for CVE-2021-29203. Version 1.23 fully addresses the issue. The HPE EIM is not available directly from HPE Support Center. Contact HPE support to obtain the update. History Version 1: Initial release on 29 April 2021. Version 2: Updated on 2 June 2021, changed EIM version number from 1.22 to 1.23. Version 3: Updated on 13 July 2021, indicates EIM is not available directly from the Support Center. Version 4: Updated on 16 August 2021, with an update to the resolution note. Third-Party Security Patches Applies to systems running Hewlett Packard Enterprise software products. Support and Reporting Contact normal HPE Services support channel for issues related to recommendations. Report potential security vulnerabilities via email: or use the provided report form.