Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 12/08/2022 Updated: 16/08/2022

CVSS v3 Base Score: 7.4 | Impact Score: 5.9 | Exploitability Score: 1.4

VMScore: 0

Subscribe to Integrated Lights-out 5 Firmware

A potential local arbitrary code execution and a local denial of service (DoS) vulnerability within an isolated process were discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): before 2.71. An unprivileged user could locally exploit this vulnerability to potentially execute arbitrary code in an isolated process resulting in a complete loss of confidentiality, integrity, and availability within that process. In addition, an unprivileged user could exploit a denial of service (DoS) vulnerability in an isolated process resulting in a complete loss of availability within that process. A successful attack depends on conditions beyond the attackers control. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).

Vulnerable Product	Search on Vulmon	Subscribe to Product
hpe integrated_lights-out_5_firmware

NVD-CWE-noinfo https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04333en_us https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-28636

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect