Code injection

2013-06-1419:55:00

PRIOn knowledge base

www.prio-n.com

8.3 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.8%

JSON

Unspecified vulnerability on HP Integrated Lights-Out 3 (aka iLO3) cards with firmware before 1.57 and 4 (aka iLO4) cards with firmware before 1.22, when Single-Sign-On (SSO) is used, allows remote attackers to execute arbitrary code via unknown vectors.

CPENameOperatorVersion
integrated_lights-out_3_firmwareeq1.26
integrated_lights-out_3_firmwareeq1.50
integrated_lights-out_3_firmwareeq1.20
integrated_lights-out_3_firmwareeq1.05
integrated_lights-out_3_firmwarele1.55
integrated_lights-out_3_firmwareeq1.00
integrated_lights-out_3_firmwareeq1.28
integrated_lights-out_4_firmwarele1.20
integrated_lights-out_4_firmwareeq1.13
integrated_lights-out_4_firmwareeq1.11

Name	Operator	Version
integrated_lights-out_3_firmware	eq	1.26
integrated_lights-out_3_firmware	eq	1.50
integrated_lights-out_3_firmware	eq	1.20
integrated_lights-out_3_firmware	eq	1.05
integrated_lights-out_3_firmware	le	1.55
integrated_lights-out_3_firmware	eq	1.00
integrated_lights-out_3_firmware	eq	1.28
integrated_lights-out_4_firmware	le	1.20
integrated_lights-out_4_firmware	eq	1.13
integrated_lights-out_4_firmware	eq	1.11