CVE-2021-25170

Name of the Vulnerable Software and Affected Versions: HPE Apollo 70 System versions prior to 3.0.14.0

Description: The issue is related to a local buffer overflow in the libifc.so websetremoteimageinfo function. This function is part of the Baseboard Management Controller (BMC) firmware. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations: For versions prior to 3.0.14.0, update to version 3.0.14.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the websetremoteimageinfo function in the libifc.so library until a patch is applied.