cbcvebase.
CVE-2013-2338
published 2013-06-14

CVE-2013-2338: Unspecified vulnerability on HP Integrated Lights-Out 3 (aka iLO3) cards with firmware before 1.57 and 4 (aka iLO4) cards with firmware before 1.22, when…

PriorityP357critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
10.72%
95.3th percentile
Unspecified vulnerability on HP Integrated Lights-Out 3 (aka iLO3) cards with firmware before 1.57 and 4 (aka iLO4) cards with firmware before 1.22, when Single-Sign-On (SSO) is used, allows remote attackers to execute arbitrary code via unknown vectors.

Affected

10 ranges
VendorProductVersion rangeFixed in
hpintegrated_lights-out_3_firmware<= 1.55
hpintegrated_lights-out_3_firmware
hpintegrated_lights-out_3_firmware
hpintegrated_lights-out_3_firmware
hpintegrated_lights-out_3_firmware
hpintegrated_lights-out_3_firmware
hpintegrated_lights-out_3_firmware
hpintegrated_lights-out_4_firmware<= 1.20
hpintegrated_lights-out_4_firmware
hpintegrated_lights-out_4_firmware
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.