CVE-2020-7199
CRITICALHPE Edgeline Infrastructure Manager < 1.21 - Improper Authentication
Title source: llmDescription
A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could be remotely exploited to bypass remote authentication leading to execution of arbitrary commands, gaining privileged access, causing denial of service, and changing the configuration.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04063en_us
Scores
CVSS v3
9.8
EPSS
0.1412
EPSS Percentile
94.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (1)
hp/edgeline_infrastructure_manager
< 1.21
Published
Dec 02, 2020
Tracked Since
Feb 18, 2026