Cisco HyperFlex Data Platform Installer Command Injection Vulnerability Exploit

The password input field in the "/auth/" and "/auth/change" endpoints of Cisco HyperFlex HX Installer Virtual Machine allow an unauthenticated attacker to execute systems commands as root.
CVE Link
CVE-2021-1497
Exploit Platform
Linux
Exploit Type
Exploits
Remote Code Execution
Product Name
Impact