Vulnerability Details CVE-2017-12542
A authentication bypass and execution of code vulnerability in HPE Integrated Lights-out 4 (iLO 4) version prior to 2.53 was found.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.941
EPSS Ranking 99.9%
CVSS Severity
CVSS v3 Score 10.0
CVSS v2 Score 10.0
References
- http://www.securityfocus.com/bid/100467
- http://www.securitytracker.com/id/1039222
- https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03769en_us
- https://www.exploit-db.com/exploits/44005/
- http://www.securityfocus.com/bid/100467
- http://www.securitytracker.com/id/1039222
- https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03769en_us
- https://www.exploit-db.com/exploits/44005/
Products affected by CVE-2017-12542
-
cpe:2.3:h:hp:integrated_lights-out_4:-
-
cpe:2.3:o:hp:integrated_lights-out_4_firmware:1.11
-
cpe:2.3:o:hp:integrated_lights-out_4_firmware:1.13
-
cpe:2.3:o:hp:integrated_lights-out_4_firmware:1.20
-
cpe:2.3:o:hp:integrated_lights-out_4_firmware:1.51
-
cpe:2.3:o:hp:integrated_lights-out_4_firmware:1.52
-
cpe:2.3:o:hp:integrated_lights-out_4_firmware:1.58
-
cpe:2.3:o:hp:integrated_lights-out_4_firmware:2.01
-
cpe:2.3:o:hp:integrated_lights-out_4_firmware:2.03
-
cpe:2.3:o:hp:integrated_lights-out_4_firmware:2.30
-
cpe:2.3:o:hp:integrated_lights-out_4_firmware:2.43