CVE-2021-1497 — Actively Exploited: HyperFlex HX (Cisco)
Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the root user.
| CVE ID | CVE-2021-1497 |
|---|---|
| Vendor | Cisco |
| Product | HyperFlex HX |
| Vulnerability name | Cisco HyperFlex HX Installer Virtual Machine Command Injection Vulnerability |
| Date added | 2021-11-03 |
| Remediation due | 2021-11-17 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the root user. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →