Hp Integrated Lights-Out 2 Firmware vulnerabilities
6 known vulnerabilities affecting hp/integrated_lights-out_2_firmware.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2018-7112MEDIUMCVSS 5.5fixed in 2.332018-12-03
CVE-2018-7112 [MEDIUM] CVE-2018-7112: The HPE-provided Windows firmware installer for certain Gen9, Gen8, G7,and G6 HPE servers allows loc
The HPE-provided Windows firmware installer for certain Gen9, Gen8, G7,and G6 HPE servers allows local disclosure of privileged information. This issue was resolved in previously provided firmware updates as follows. The HPE Windows firmware installer was updated in the system ROM updates which also addressed the original Spectre/Meltdown set of vulnerabiliti
nvd
CVE-2017-8979CRITICALCVSS 9.8v2.292018-02-15
CVE-2017-8979 [CRITICAL] CVE-2017-8979: Security vulnerabilities in the HPE Integrated Lights-Out 2 (iLO 2) firmware could be exploited remo
Security vulnerabilities in the HPE Integrated Lights-Out 2 (iLO 2) firmware could be exploited remotely to allow authentication bypass, code execution, and denial of service.
nvd
CVE-2017-12543MEDIUMCVSS 6.5fixed in 2.302018-02-15
CVE-2017-12543 [MEDIUM] CWE-200 CVE-2017-12543: A remote disclosure of information vulnerability in Moonshot Remote Console Administrator Prior to 2
A remote disclosure of information vulnerability in Moonshot Remote Console Administrator Prior to 2.50, iLO4 prior to v2.53, iLO3 prior to v1.89 and iLO2 prior to v2.30 was found.
nvd
CVE-2014-7876CRITICALCVSS 10.0≤ 2.252015-03-31
CVE-2014-7876 [CRITICAL] CVE-2014-7876: Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27 and 4 before 2.03
Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27 and 4 before 2.03 and iLO Chassis Management (CM) firmware before 1.30 allows remote attackers to gain privileges, execute arbitrary code, or cause a denial of service via unknown vectors.
nvd
CVE-2015-2106MEDIUMCVSS 6.4≤ 2.252015-03-31
CVE-2015-2106 [MEDIUM] CVE-2015-2106: Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27, 3 before 1.82, a
Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27, 3 before 1.82, and 4 before 2.10 allows remote attackers to bypass intended access restrictions or cause a denial of service via unknown vectors.
nvd
CVE-2014-2601HIGHCVSS 7.8≤ 2.23v1.00+9 more2014-04-24
CVE-2014-2601 [HIGH] CVE-2014-2601: The server in HP Integrated Lights-Out 2 (aka iLO 2) 2.23 and earlier allows remote attackers to cau
The server in HP Integrated Lights-Out 2 (aka iLO 2) 2.23 and earlier allows remote attackers to cause a denial of service via crafted HTTPS traffic, as demonstrated by traffic from a CVE-2014-0160 vulnerability-assessment tool.
nvd