A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) prior to v1.37 could be locally exploited to bypass the security restrictions for firmware updates.
[
{
"product": "HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers",
"vendor": "Hewlett Packard Enterprise",
"versions": [
{
"status": "affected",
"version": "iLO 5 for HPE Gen10 Servers - Prior to v1.37"
}
]
}
]