CVE-2021-29219

HIGH

HPE Flexnetwork 5130 Jg932a Firmware - Buffer Overflow

Title source: rule

Description

A potential local buffer overflow vulnerability has been identified in HPE FlexNetwork 5130 EL Switch Series version: Prior to 5130_EI_7.10.R3507P02. HPE has made the following software update to resolve the vulnerability in HPE FlexNetwork 5130 EL Switch Series version 5130_EL_7.10.R3507P02.

References (1)

Core 1

Core References

Patch, Vendor Advisory x_refsource_misc

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbnw04234en_us

Scores

CVSS v3 7.8

EPSS 0.0006

EPSS Percentile 19.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-120

Status published

Products (7)

hpe/flexnetwork_5130_jg932a_firmware < 5130_ei_7.10.r3507p02

hpe/flexnetwork_5130_jg933a_firmware < 5130_ei_7.10.r3507p02

hpe/flexnetwork_5130_jg934a_firmware < 5130_ei_7.10.r3507p02

hpe/flexnetwork_5130_jg936a_firmware < 5130_ei_7.10.r3507p02

hpe/flexnetwork_5130_jg937a_firmware < 5130_ei_7.10.r3507p02

hpe/flexnetwork_5130_jg940a_firmware < 5130_ei_7.10.r3507p02

hpe/flexnetwork_5130_jg941a_firmware < 5130_ei_7.10.r3507p02

Published Feb 04, 2022

Tracked Since Feb 18, 2026