CVE-2021-29203 PoC — HP Edgeline Infrastructure Management 访问控制错误漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-29203.yaml

Associated Vulnerability

Title:HP Edgeline Infrastructure Management 访问控制错误漏洞 (CVE-2021-29203)
Description:Hewlett Packard Enterprise Edgeline Infrastructure Management是美国慧与（Hewlett Packard Enterprise）公司的一个用于数据中心环境用于管理Edge设备的软件。 Edgeline Infrastructure Manager 存在访问控制错误漏洞，该漏洞源于没有充分的授权检查。以下产品及版本受到影响：Edgeline Infrastructure Manager: 1.21 。

Description

HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software, prior to version 1.22 contains an authentication bypass vulnerability which could be remotely exploited to bypass remote authentication and possibly lead to execution of arbitrary commands, gaining privileged access, causing denial of service, and changing the configuration.

File Snapshot


 id: CVE-2021-29203

info:
  name: HPE Edgeline Infrastructure Manager <1.22 - Authentication Bypass


...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!