Information Disclosure Vulnerability in HP Integrated Lights-Out 3 and 4
CVE-2012-3271

Currently unrated

Key Information:

Vendor

HP
Status
Integrated Lights-out 3 Firmware
Vendor
CVE Published:
29 November 2012

What is CVE-2012-3271?

The HP Integrated Lights-Out 3 (iLO3) and Integrated Lights-Out 4 (iLO4) exhibit a vulnerability that enables remote attackers to access sensitive information. This issue arises in firmware versions prior to 1.50 for iLO3 and prior to 1.13 for iLO4, allowing unauthorized access through unrecognized vectors. It is crucial for users of these products to update their firmware to mitigate potential risks associated with this security flaw.

References

http://www.securityfocus.com/bid/56597
vdb-entryx_refsource_BID
http://h20000.www2.hp.com/bizsupport/TechSupport/Document...
vendor-advisoryx_refsource_HP
http://secunia.com/advisories/51378
third-party-advisoryx_refsource_SECUNIA

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2012-3271 : Information Disclosure Vulnerability in HP Integrated Lights-Out 3 and 4