CVE-2021-1498CISA KEVEPSS p100.0%

CVE-2021-1498Cisco HyperFlex HX Data Platform Command Injection Vulnerability

Cisco / HyperFlex HX

Description

Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the tomcat8 user.

Scoring

EPSS100.00% probability of exploitation · percentile 100.0% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryCisco HyperFlex HX Data Platform Command Injection Vulnerabilitykev-cve-2021-14980%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Cisco HyperFlex HX Installer Virtual Machine Command Injection Vulnerability
CVE
CVE-2026-23814
CVE
Hikvision Improper Input Validation
CVE
Cisco NX-OS Command Injection Vulnerability
CVE
CVE-2026-20094
CVE
CVE-2026-34910
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.