2 matches found
HP Integrated Lights-Out Improper Input Validation (CVE-2022-28626)
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 iLO 5 firmware versions: Prior to 2.71. A highly privileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality, integrity, and...
CVE-2022-28626
CVE-2022-28626 concerns HPE Integrated Lights-Out 5 (iLO 5) firmware prior to 2.71. A local arbitrary code execution vulnerability exists, exploitable by a highly privileged user with local access, leading to complete compromise of confidentiality, integrity, and availability. The issue is tied t...