BugZero | Hewlett Packard Enterprise BugID a00120260en_us - Notice: (Revision) HPE SimpliVity

Hewlett Packard Enterprise - Defect ID: a00120260en_us

Notice: (Revision) HPE SimpliVity - Systems Running With VMware vCenter 6.5X, 6.7x and 7.x Are Impacted By Apache Log4j2 Vulnerability (CVE 2021-44228 and CVE 2021-45046 )

Hewlett Packard Enterprise - Defect ID: a00120260en_us

Notice: (Revision) HPE SimpliVity - Systems Running With VMware vCenter 6.5X, 6.7x and 7.x Are Impacted By Apache Log4j2 Vulnerability (CVE 2021-44228 and CVE 2021-45046 )

Last updated on 1/4/2025

Overall: 0N/A

Severity: 0N/A

Community: 0N/A

Lifecycle: 0N/A

What is the BugZero Risk Score?

Vendor details

Priority: Customer Notice

Overall: 0N/A

Severity: 0N/A

Community: 0N/A

Lifecycle: 0N/A

What is the BugZero Risk Score?

Vendor details

Priority: Customer Notice

Info

Document Version Release Date Details 3 March 14, 2022 Updated the Resolution, VMWare has provided fixes for CVE-2021-44228 and CVE-2021-45046 in vCenter Server Appliance 7.0 U3c. 2 January 5, 2022 Updated Resolution to add a note that the workaround is approved by HPE SimpliVity Engineering and has no negative impact on SimpliVity systems 1 December 22, 2021 Original document release CVE 2021-44228 and CVE 2021-45046 have been determined to impact VMware vCenter Server 7.0.x, 6.7.x, and 6.5.x via the Apache Log4j open source component it ships. HPE SimpliVity systems running with any of the above vCenter Server versions are impacted. Refer to the following URL for additional information: https://logging.apache.org/log4j/2.x/ VMware vCenter versions supported by HPE SimpliVity OmniStack software releases are impacted on the following SimpliVity Platforms: HPE SimpliVity 380 Gen9 HPE SimpliVity 380 Gen10 HPE SimpliVity 380 Gen10 G HPE SimpliVity 380 Gen10 H HPE SimpliVity 325 Gen10 HPE SimpliVity 325 Gen10 Plus v2 HPE SimpliVity 2600 Gen10

Scope

None

Resolution

None

Original Vendor Announcement

Defect ID: a00138717en_us
Advisory: (Revision) HPE Compute Scale-up Server 3200 - System May Encounter an HWERR_BIOS_HALT_DETECTED Condition During the OS Crashdump Process
Defect ID: a00142136en_us
Advisory: (Revision) HPE ProLiant DL20/ML30 Gen10 Plus Servers - Systems Configured with Intel I350-T4 or Broadcom BCM5719 Adapters May Stop Responding During a Reboot or Shutdown if All Four NIC Ports Are Disabled
Defect ID: a00119124en_us
Notice: (Revision) HPE B-series Switches - Accessing HPE B-series SANnav, Fabric OS, and TruFOS Certificates
Defect ID: a00118860en_us
Advisory: HPE InfoSight for Servers - Manually Uploaded Active Health System (AHS) Log to the Analyze Log Page Is Not Displayed After a Successful Upload to the InfoSight Portal
Defect ID: a00146525en_us
Advisory: HPE OneView - OneView May Display the Error, "Unable to Create Volume Template Error Regarding Read-Only Attribute"

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

Hewlett Packard Enterprise - Defect ID: a00120260en_us

Notice: (Revision) HPE SimpliVity - Systems Running With VMware vCenter 6.5X, 6.7x and 7.x Are Impacted By Apache Log4j2 Vulnerability (CVE 2021-44228 and CVE 2021-45046 )

Hewlett Packard Enterprise - Defect ID: a00120260en_us

Notice: (Revision) HPE SimpliVity - Systems Running With VMware vCenter 6.5X, 6.7x and 7.x Are Impacted By Apache Log4j2 Vulnerability (CVE 2021-44228 and CVE 2021-45046 )

Last updated on 1/4/2025

Vendor details

Vendor details

Description

Info

Scope

Resolution

Links

Top Hewlett Packard Enterprise defects by risk score

Ready to prevent the next vendor outage?