Vulnerabilities > CVE-2018-7113 - Unspecified vulnerability in HP Integrated Lights-Out 5 Firmware

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

NVD

Published: 2018-12-03

Updated: 2020-08-24

Summary

A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) prior to v1.37 could be locally exploited to bypass the security restrictions for firmware updates.

Vulnerable Configurations

Part	Description	Count
OS	Hp HP Integrated Lights OUT 5 Firmware *	1
Hardware	Hp HP GEN 10 Servers - HP Integrated Lights OUT -	2

References

http://www.securitytracker.com/id/1042010
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03894en_us