Lucene search

HpeCVELIST:CVE-2023-30911

HistoryOct 18, 2023 - 5:04 p.m.

CVE-2023-30911

2023-10-1817:04:35

hpe

www.cve.org

cve-2023-30911

hpe integrated lights-out

ilorest

denial of service

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

0.0005 Low

EPSS

Percentile

17.1%

JSON

HPE Integrated Lights-Out 5, and Integrated Lights-Out 6 using iLOrest may cause denial of service.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "HPE Integrated Lights-Out",
    "vendor": "Hewlett Packard Enterprise (HPE)",
    "versions": [
      {
        "lessThan": "iLO 5 v2.98",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThan": "iLO 6 v1.53",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

References

support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf04544en_us

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

0.0005 Low

EPSS

Percentile

17.1%

JSON

Related for CVELIST:CVE-2023-30911