SUPPORT COMMUNICATION – SECURITY BULLETIN

Document ID: hpesbhf03769en_us

Version: 1HPESBHF03769 rev.1 – HPE Integrated Lights-out 4 (iLO 4) Multiple Remote VulnerabilitiesNOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

Release Date: 2017-08-24

Last Updated: 2018-05-08


Potential Security Impact: Remote: Authentication Bypass, Code Execution

Source: Hewlett Packard Enterprise, HPE Product Security Response Team

VULNERABILITY SUMMARY

A potential security vulnerability has been identified in HPE Integrated Lights-out (iLO 4). The vulnerability could be exploited remotely to allow authentication bypass and execution of code.

References: CVE-2017-12542

SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.

HP Integrated Lights-Out 4 (iLO 4), Prior to 2.53

Sorgente: HPESBHF03769 rev.1 – HPE Integrated Lights-out 4 (iLO 4) Multiple Remote Vulnerabilities