3 matches found
HP Integrated Lights-Out Authentication Bypass Using an Alternate Path or Channel (CVE-2018-7113)
A security vulnerability in HPE Integrated Lights-Out 5 iLO 5 prior to v1.37 could be locally exploited to bypass the security restrictions for firmware updates. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
CVE-2018-7113
CVE-2018-7113 affects HP’s Integrated Lights-Out 5 (iLO 5) prior to v1.37. The issue allows local attack to bypass firmware-update security restrictions, enabling unauthorized firmware updates. Affected component: iLO 5 firmware management; root cause: local bypass of update restrictions; impact:...
HPESBHF03894 rev.1 - HPE Integrated Lights-Out 5 (iLO 5) Firmware Updates, Local Bypass of Security Restrictions
Potential Security Impact: Local: Bypass Security Restrictions SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v1.37 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2018-7113 |...