Remote Denial of Service and Code Execution Vulnerability in HPE Integrated Lights-Out 5
CVE-2022-28639
8.8HIGH
Key Information:
- Vendor
HP
- Vendor
- CVE Published:
- 20 September 2022
What is CVE-2022-28639?
A remote potential adjacent denial of service (DoS) and arbitrary code execution vulnerability has been identified in HPE Integrated Lights-Out 5 (iLO 5) firmware version 2.71. This vulnerability could potentially compromise the confidentiality, integrity, and availability of the affected system. Hewlett Packard Enterprise has released firmware updates to remediate these security concerns. Users are advised to update their firmware to the latest version to safeguard against potential exploits.
Affected Version(s)
HPE Integrated Lights-Out 5 (iLO 5) Prior to 2.72
HPE Integrated Lights-Out 5 (iLO 5) = unspecified