Vulnerabilities > CVE-2015-5436 - Unspecified vulnerability in HP Integrated Lights-Out Firmware

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

NVD

Published: 2017-05-11

Updated: 2023-11-07

Summary

A potential security vulnerability has been identified with HP Integrated Lights-Out 4 (iLO 4) firmware version 2.11 and later, but prior to version 2.30. The vulnerability could be exploited remotely resulting in Denial of Service (DoS). Note this was originally published in 2015 however the CVE entry was added in 2020.

Vulnerable Configurations

Part	Description	Count
OS	Hp HP Integrated Lights OUT Firmware 1.6A HP Integrated Lights OUT Firmware 1.10 HP Integrated Lights OUT Firmware 1.15 HP Integrated Lights OUT Firmware 1.15A HP Integrated Lights OUT Firmware 1.16A HP Integrated Lights OUT Firmware 1.20A HP Integrated Lights OUT Firmware 1.26A HP Integrated Lights OUT Firmware 1.27A HP Integrated Lights OUT Firmware 1.40A HP Integrated Lights OUT Firmware 1.41A HP Integrated Lights OUT Firmware 1.42A HP Integrated Lights OUT Firmware 1.50 HP Integrated Lights OUT Firmware 1.50A HP Integrated Lights OUT Firmware 1.51A HP Integrated Lights OUT Firmware 1.80 HP Integrated Lights OUT Firmware 1.82 HP Integrated Lights OUT Firmware 1.91 HP Integrated Lights OUT Firmware 1.93	18
Hardware	Hp HP Integrated Lights OUT 4 -	1

References

https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-c04806165