Lucene search

[email protected]CVE-2018-7112

HistoryDec 03, 2018 - 3:29 p.m.

CVE-2018-7112

2018-12-0315:29:00

[email protected]

web.nvd.nist.gov

hpe

windows

firmware installer

disclosure

privileged information

gen9

gen8

hpe servers

security bulletin

spectre

meltdown

ilo 2

ilo 3

ilo 4

system rom

hpesbhf03805

hpesbhf03835

hpesbhf03831

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

5.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

The HPE-provided Windows firmware installer for certain Gen9, Gen8, G7,and G6 HPE servers allows local disclosure of privileged information. This issue was resolved in previously provided firmware updates as follows. The HPE Windows firmware installer was updated in the system ROM updates which also addressed the original Spectre/Meltdown set of vulnerabilities. At that time, the Windows firmware installer was also updated in the versions of HPE Integrated Lights-Out 2, 3, and 4 (iLO 2, 3, and 4) listed in the security bulletin. The updated HPE Windows firmware installer was released in the system ROM and HPE Integrated Lights-Out (iLO) releases documented in earlier HPE Security Bulletins: HPESBHF03805, HPESBHF03835, HPESBHF03831. Windows-based systems that have already been updated to the system ROM or iLO versions described in these security bulletins require no further action.

Affected configurations

NVD

Node

hpintegrated_lights-out_2_firmwareRange<2.33

AND

hpintegrated_lights-out_2Match-

hpproliant_gen6_serverMatch-

Node

hpintegrated_lights-out_3_firmwareRange<1.90

AND

hpintegrated_lights-outMatch-

hpproliant_gen7_serverMatch-

Node

hpintegrated_lights-out_4_firmwareRange<2.60

AND

hpintegrated_lights-outMatch-

hpproliant_gen8_serverMatch-

Node

hpproliant_xl750f_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_xl750f_gen9_serverMatch-

Node

hpproliant_xl740f_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_xl740f_gen9_serverMatch-

Node

hpproliant_xl730f_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_xl730f_gen9_serverMatch-

Node

hpproliant_xl450_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_xl450_gen9_serverMatch-

Node

hpproliant_xl270d_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_xl270d_gen9_serverMatch-

Node

hpproliant_xl270d_gen9_accelerator_tray_firmwareRange<2.56_01-22-2018

AND

hpproliant_xl270d_gen9_accelerator_trayMatch-

Node

hpproliant_xl260a_gen9_server_firmwareRange<1.60_01-22-2018

AND

hpproliant_xl260a_gen9_serverMatch-

Node

hpproliant_xl250a_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_xl250a_gen9_serverMatch-

Node

hpproliant_xl230a_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_xl230a_gen9_serverMatch-

Node

hpproliant_xl190r_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_xl190r_gen9_serverMatch-

Node

hpproliant_xl170r_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_xl170r_gen9_serverMatch-

Node

hpproliant_dl560_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_dl560_gen9_serverMatch-

Node

hpproliant_dl380_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_dl380_gen9_serverMatch-

Node

hpproliant_dl360_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_dl360_gen9_serverMatch-

Node

hpproliant_dl180_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_dl180_gen9_serverMatch-

Node

hpproliant_dl160_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_dl160_gen9_serverMatch-

Node

hpproliant_dl120_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_dl120_gen9_serverMatch-

Node

hpproliant_dl80_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_dl80_gen9_serverMatch-

Node

hpproliant_dl60_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_dl60_gen9_serverMatch-

Node

hpproliant_dl20_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_dl20_gen9_serverMatch-

Node

hpproliant_ml350_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_ml350_gen9_serverMatch-

Node

hpproliant_ml150_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_ml150_gen9_serverMatch-

Node

hpproliant_ml110_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_ml110_gen9_serverMatch-

Node

hpproliant_ml30_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_ml30_gen9_serverMatch-

Node

hpproliant_ml10_gen9_server_firmwareRange<2018.01.22

AND

hpproliant_ml10_gen9_serverMatch-

Node

hpproliant_bl660c_gen9_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_bl660c_gen9_serverMatch-

Node

hpproliant_bl460c_gen9_server_blade_firmwareRange<2.56_01-22-2018

AND

hpproliant_bl460c_gen9_server_bladeMatch-

Node

hpproliant_ws460c_gen9_workstation_firmwareRange<2.56_01-22-2018

AND

hpproliant_ws460c_gen9_workstationMatch-

Node

hpproliant_dl380e_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_dl380e_gen8_serverMatch-

Node

hpproliant_dl360p_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_dl360p_gen8_serverMatch-

Node

hpproliant_dl360e_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_dl360e_gen8_serverMatch-

Node

hpproliant_dl320e_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_dl320e_gen8_serverMatch-

Node

hpproliant_dl320e_gen8_v2_server_firmwareRange<2018.01.22

AND

hpproliant_dl320e_gen8_v2_serverMatch-

Node

hpproliant_dl160_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_dl160_gen8_serverMatch-

Node

hpproliant_sl250s_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_sl250s_gen8_serverMatch-

Node

hpproliant_sl210t_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_sl210t_gen8_serverMatch-

Node

hpproliant_bl660c_gen8_server_blade_firmwareRange<2018.01.22

AND

hpproliant_bl660c_gen8_serverMatch-

Node

hpproliant_bl465c_gen8_\(amd\)_firmwareRange<2018.03.14

AND

hpproliant_bl465c_gen8_\(amd\)Match-

Node

hpproliant_bl460c_gen8_server_blade_firmwareRange<2018.01.22

AND

hpproliant_bl460c_gen8_server_bladeMatch-

Node

hpproliant_bl420c_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_bl420c_gen8_serverMatch-

Node

hpproliant_sl4540_gen8_1_node_server_firmwareRange<2018.01.22

AND

hpproliant_sl4540_gen8_1_node_serverMatch-

Node

hpproliant_sl270s_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_sl270s_gen8_serverMatch-

Node

hpproliant_dl580_gen8_server_firmwareRange<2.00_02-22-2018

AND

hpproliant_dl580_gen8_serverMatch-

Node

hpproliant_dl560_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_dl560_gen8_serverMatch-

Node

hpproliant_dl380p_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_dl380p_gen8_serverMatch-

Node

hpproliant_dl385p_gen8_\(amd\)_firmwareRange<2018.03.14

AND

hpproliant_dl385p_gen8_\(amd\)Match-

Node

hpproliant_ml350e_gen8_v2_server_firmwareRange<2018.01.22

AND

hpproliant_ml350e_gen8_v2_serverMatch-

Node

hpproliant_ml350e_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_ml350e_gen8_serverMatch-

Node

hpproliant_ml350p_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_ml350p_gen8_serverMatch-

Node

hpproliant_ml310e_gen8_v2_server_firmwareRange<2018.01.22

AND

hpproliant_ml310e_gen8_v2_serverMatch-

Node

hpproliant_ml310e_gen8_server_firmwareRange<2018.01.22

AND

hpproliant_ml310e_gen8_serverMatch-

Node

hpproliant_microserver_gen8_firmwareRange<2018.01.22

AND

hpproliant_microserver_gen8Match-

Node

hpproliant_m710_server_cartridge_firmwareRange<2018.01.22

AND

hpproliant_m710_server_cartridgeMatch-

Node

hpproliant_m710p_server_cartridge_firmwareRange<2018.01.22

AND

hpproliant_m710p_server_cartridgeMatch-

Node

hpproliant_m710x_server_cartridge_firmwareRange<1.64_01-22-2018

AND

hpproliant_m710x_server_cartridgeMatch-

Node

hpproliant_m510_server_cartridge_firmwareRange<1.64_01-22-2018

AND

hpproliant_m510_server_cartridgeMatch-

Node

hpproliant_m350_server_cartridge_firmwareRange<2018.01.22

AND

hpproliant_m350_server_cartridgeMatch-

Node

hpproliant_m300_server_cartridge_firmwareRange<2018.01.22

AND

hpproliant_m300_server_cartridgeMatch-

Node

hpproliant_bl2x220c_g7_server_blade_firmwareRange<2018.05.21

AND

hpproliant_bl2x220c_g7_server_bladeMatch-

Node

hpproliant_dl585_g7_server_\(amd\)_firmwareRange<2018.03.14

AND

hpproliant_dl585_g7_server_\(amd\)Match-

Node

hpproliant_dl980_g7_server_firmwareRange<2018.05.21

AND

hpproliant_dl980_g7_serverMatch-

Node

hpproliant_dl580_g7_server_firmwareRange<2018.05.21

AND

hpproliant_dl580_g7_serverMatch-

Node

hpproliant_dl385_g7_server_firmwareRange<2018.03.14

AND

hpproliant_dl385_g7_serverMatch-

Node

hpproliant_dl380_g7_server_firmwareMatch-

AND

hpproliant_dl380_g7_serverMatch-

Node

hpproliant_dl120_g7_server_firmwareRange<2018.05.21

AND

hpproliant_dl120_g7_serverMatch-

Node

hpproliant_dl360_g7_server_firmwareRange<2018.05.21

AND

hpproliant_dl360_g7_serverMatch-

Node

hpproliant_bl685c_g7_server_blade_\(amd\)_firmwareRange<2018.03.14

AND

hpproliant_bl685c_g7_server_blade_\(amd\)Match-

Node

hpproliant_bl680c_g7_server_blade_firmwareRange<2018.05.21

AND

hpproliant_bl680c_g7_server_bladeMatch-

Node

hpproliant_bl620c_g7_server_blade_firmwareRange<2018.05.21

AND

hpproliant_bl620c_g7_server_bladeMatch-

Node

hpproliant_bl490c_g7_server_blade_firmwareRange<2018.05.21

AND

hpproliant_bl490c_g7_server_bladeMatch-

Node

hpproliant_bl465c_g7_server_blade_firmwareRange<2018.03.14

AND

hpproliant_bl465c_g7_server_bladeMatch-

Node

hpproliant_bl460c_g7_server_blade_firmwareRange<2018.05.21

AND

hpproliant_bl460c_g7_server_bladeMatch-

Node

hpproliant_sl390s_g7_server_firmwareRange<2018.05.21

AND

hpproliant_sl390s_g7_serverMatch-

Node

hpproliant_ml110_g7_server_firmwareRange<2018.05.21

AND

hpproliant_ml110_g7_serverMatch-

Node

hpproliant_ml10_v2_server_firmwareRange<2018.01.22

AND

hpproliant_ml10_v2_serverMatch-

Node

hpproliant_sl4545_g7_server_\(amd\)_firmwareMatch2018.03.14\(a\)

AND

hpproliant_sl4545_g7_server_\(amd\)Match-

Node

hpproliant_thin_micro_tm200_server_firmwareRange<2.56_01-22-2018

AND

hpproliant_thin_micro_tm200_serverMatch-

Node

hpproliant_dl380_g6_server_firmwareRange<2018.05.21

AND

hpproliant_dl380_g6_serverMatch-

Node

hpproliant_dl370_g6_server_firmwareRange<2018.05.21

AND

hpproliant_dl370_g6_serverMatch-

Node

hpproliant_dl360_g6_server_firmwareRange<2018.05.21

AND

hpproliant_dl360_g6_serverMatch-

Node

hpproliant_dl320_g6_server_firmwareRange<2018.05.21

AND

hpproliant_dl320_g6_serverMatch-

Node

hpproliant_dl180_g6_server_firmware

AND

hpproliant_dl180_g6_serverMatch-

Node

hpproliant_dl170h_g6_server_firmware

AND

hpproliant_dl170h_g6_serverMatch-

Node

hpproliant_dl170e_g6_server_firmware

AND

hpproliant_dl170e_g6_serverMatch-

Node

hpproliant_dl160_g6_server_firmware

AND

hpproliant_dl160_g6_serverMatch-

Node

hpproliant_dl120_g6_server_firmware

AND

hpproliant_dl120_g6_serverMatch-

Node

hpproliant_ml370_g6_server_firmwareRange<2018.05.21

AND

hpproliant_ml370_g6_serverMatch-

Node

hpproliant_ml350_g6_server_firmwareRange<2018.05.21

AND

hpproliant_ml350_g6_serverMatch-

Node

hpproliant_ml330_g6_server_firmwareRange<2018.05.21

AND

hpproliant_ml330_g6_serverMatch-

Node

hpproliant_ml150_g6_server_firmware

AND

hpproliant_ml150_g6_serverMatch-

Node

hpproliant_ml110_g6_server_firmware

AND

hpproliant_ml110_g6_serverMatch-

Node

hpproliant_sl2x170z_g6_server_firmware

AND

hpproliant_sl2x170z_g6_serverMatch-

Node

hpproliant_bl490c_g6_server_blade_firmwareRange<2018.05.21

AND

hpproliant_bl490c_g6_server_bladeMatch-

Node

hpproliant_bl460c_g6_server_blade_firmwareRange<2018.05.21

AND

hpproliant_bl460c_g6_server_bladeMatch-

Node

hpproliant_sl170z_g6_server_firmware

AND

hpproliant_sl170z_g6_serverMatch-

Node

hpproliant_sl160s_g6_server_firmware

AND

hpproliant_sl160s_g6_serverMatch-

Node

hpproliant_bl2x220c_g6_server_blade_firmwareRange<2018.05.21

AND

hpproliant_bl2x220c_g6_server_bladeMatch-

Node

hpproliant_bl280c_g6_server_bladefirmwareRange<2018.05.21

AND

hpproliant_bl280c_g6_serverMatch-

CPENameOperatorVersion
hp:integrated_lights-out_2_firmwarehp integrated lights-out 2 firmwarelt2.33

CPE	Name	Operator	Version
hp:integrated_lights-out_2_firmware	hp integrated lights-out 2 firmware	lt	2.33

CNA Affected

[
  {
    "product": "Windows firmware installer for Gen9, Gen8, G7,and G6 HPE servers",
    "vendor": "Hewlett Packard Enterprise",
    "versions": [
      {
        "status": "affected",
        "version": "Only the Windows based firmware installers for the following products. HPE Integrated Lights-Out 2 (iLO 2) Firmware for ProLiant G6 Servers - Prior to v2.33, HPE Integrated Lights-Out 3 (iLO 3) Firmware for ProLiant G7 Servers - Prior to v1.90, HPE Integrated Lights-Out 4 (iLO 4) Firmware for ProLiant Gen8 Server firmwares - Prior to v2.60, HPE ProLiant XL750f Gen9 Server firmware - Prior to 2.56_01-22-2018(23 Feb 2018), HPE ProLiant XL740f Gen9 Server firmware - Prior to 2.56_01-22-2018(23 Feb 2018), HPE ProLiant XL730f Gen9 Server firmware - Prior to 2.56_01-22-2018(23 Feb 2018), HPE ProLiant XL450 Gen9 Server firmware - Prior to 2.56_01-22-2018(23 Feb 2018), HPE ProLiant XL270d Gen9 Special Server - Prior to 2.56_01-22-2018(23 Feb 2018), HPE ProLiant XL270d Gen9 Accelerator Tray 2U Configure-to-order Server - Prior to 2.56_01-22-2018(23 Feb 2018), HPE ProLiant XL260a Gen9 Server firmware - Prior to 1.60_01-22-2018(26 Feb 2018), HPE ProLiant XL250a Gen9 Server firmware - Prior to 2.56_01-22- ...[truncated*]"
      }
    ]
  }
]

References

www.securitytracker.com/id/1041984

support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03805en_us

support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03831en_us

support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03835en_us

support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03869en_us

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

5.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2018-7112

nvd1 prion1 cvelist1