CVE-2021-1497CISA KEVEPSS p100.0%

CVE-2021-1497Cisco HyperFlex HX Installer Virtual Machine Command Injection Vulnerability

Cisco / HyperFlex HX

Description

Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the root user.

Scoring

EPSS99.93% probability of exploitation · percentile 100.0% · 2026-06-17T12:03:21Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryCisco HyperFlex HX Installer Virtual Machine Command Injection Vulnerabilitykev-cve-2021-14970%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Cisco HyperFlex HX Data Platform Command Injection Vulnerability
CVE
Cisco NX-OS Command Injection Vulnerability
CVE
CVE-2026-23814
CVE
CVE-2026-20094
CVE
Cisco Multiple Products Improper Input Validation Vulnerability
CVE
CVE-2025-20138
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.