Remote Access Vulnerability in HP Integrated Lights-Out (iLO) Firmware
CVE-2015-2106

Currently unrated

Key Information:

Vendor: HP
Status: Integrated Lights-out 3 Firmware; Integrated Lights-out 2 Firmware; Integrated Lights-out 4 Firmware
Vendor: CVE Published:; 31 March 2015

Summary

The HP Integrated Lights-Out (iLO) firmware, including versions 2, 3, and 4, contains an unspecified vulnerability that enables remote attackers to exploit access controls. This vulnerability may allow unauthorized users to bypass normal access restrictions, potentially leading to unauthorized actions or service disruptions. Users are advised to update to the latest firmware versions promptly to mitigate associated risks. For further details, refer to HP's official advisories.

References

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

http://www.securitytracker.com/id/1031974

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/73324

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Mar 31, 2015
Vulnerability Reserved
Feb 27, 2015